CVE-2016-6815

描述

In Apache Ranger before 0.6.2, users with "keyadmin" role should not be allowed to change password for users with "admin" role.

受影響套件(1)

• Maven/org.apache.ranger:rangerfrom 0, < 0.6.2

CVSS 分數

參考連結(4)

• ADVISORYhttps://github.com/advisories/GHSA-vhxc-8jjq-859j
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2016-6815
• WEBhttps://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger
• WEBhttp://www.securityfocus.com/bid/94221