CVE-2025-59060 | HackTesting

Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions <= 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue.

Credits

Nikita Markevich <markevich.nikita1@gmail.com>

References

https://lists.apache.org/thread/c4plx81z3xs86vgl3fd95y3q7hhtff05