Back to search
CVE-2021-40331
Published: May 5, 2023
Modified: Oct 11, 2024
PUBLISHED
Description
An Incorrect Permission Assignment for Critical Resource vulnerability was found in the Apache Ranger Hive Plugin. Any user with SELECT privilege on a database can alter the ownership of the table in Hive when Apache Ranger Hive Plugin is enabled This issue affects Apache Ranger Hive Plugin: from 2.0.0 through 2.3.0. Users are recommended to upgrade to version 2.4.0 or later.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache Ranger Hive Plugin | affected 2.0.0 - <= 2.3.0 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now