CVE-2016-0735

Published: Apr 11, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resource-level access restrictions by leveraging mishandling of a resource-level exclude policy.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[ranger-dev] 20160328 CVE update (CVE-2016-0735) - Fixed in Ranger 0.5.2

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-0735

Description

Affected Products

References