THE Apache Software Foundation has released a crucial patch addressing a serious vulnerability (CVE-2025-48977) in Apache Ignite, a database management platform. This flaw enables unauthorized data access through the application's default web interface, allowing attackers to bypass security checks by employing path traversal techniques. Consequently, intruders could manipulate critical system files, posing risks to operational continuity.
System administrators are urged to upgrade from versions 2.0.0 to 2.17.0 to version 2.18 immediately and conduct a thorough code audit to ensure the integrity of their custom components.