CVE-2019-1010206: Improper Certificate Validation

July 23, 2019 (updated August 1, 2019)

OSS Http Request (Apache Cordova Plugin) does not properly validate SSL certificates, rendering the system vulnerable to certificate spoofing.

References

nvd.nist.gov/vuln/detail/CVE-2019-1010206

Detect and mitigate CVE-2019-1010206 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →