Apache: >> Maven Wagon Security Vulnerabilities
The default configuration of Apache Maven 3.0.4, when using Maven Wagon 2.1, disables SSL certificate checks, which allows remote attackers to spoof servers via a man-in-the-middle (MITM) attack.
CVSS Score
5.8
EPSS Score
0.007
Published
2013-04-09