CVE-2015-0266

High

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct…

redhat·CWE-264·Published 2016-04-11

CVSS

7.1

EPSS

0.02

KEV

Exploits

cve.orgen

158 chars

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.

NVDen

158 chars

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.

OSV.deven

158 chars

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.

GHSAen

158 chars

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.

NVDes

193 chars

La Policy Admin Tool en Apache Ranger en versiones anteriores a 0.5.0 permite a usuarios remotos autenticados eludir restricciones destinadas al acceso a través de acceso directo a módulo URLs.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.5	8.0	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
3.0	Primary	NVD	7.1	2.8	4.2	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N