CVE-2025-70058 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue pertaining to CWE-295: Improper Certificate Validation was discovered in YMFE yapi v1.12.0. The application disables TLS/SSL certificate validation by…
High CVSS: 7.4

CVE-2025-70058

An issue pertaining to CWE-295: Improper Certificate Validation was discovered in YMFE yapi v1.12.0. The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in the HTTPS agent configuration for Axios requests
Vendor
Ymfe
Product
Yapi
CWE
CWE-295
Yayın Tarihi
2026-02-23 16:29:36
Güncelleme
2026-02-26 20:03:06
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-295 Yapi HIGH Ymfe 2026

Referanslar

https://gist.github.com/zcxlighthouse/11c53803faf23f607c2787c166e811d4 https://github.com/YMFE https://github.com/YMFE/yapi