Dependency confusion vulnerability impacts archived Apache project

Threat actors could potentially launch a software supply chain attack by exploiting a dependency confusion flaw impacting the archived Apache Cordova App Harness project, which had been discontinued five years ago, reports The Hacker News.

Article Link: Dependency confusion vulnerability impacts archived Apache project | SC Media