CVE-2020-1948: Apache Dubbo Remote Code Execution Vulnerability Alert
Affected version
- 2.7.0 <= Dubbo Version <= 2.7.6
- 2.6.0 <= Dubbo Version <= 2.6.7
- All Dubbo versions 2.5.x
Unaffected version
- Dubbo Version >= 2.7.7
Solution
Apache Dubbo has released a new version to fix the vulnerability, and the affected users are requested to upgrade as soon as possible for protection.