CVE-2020-35451

Medium

There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files…

apache·CWE-377·Published 2021-03-09

CVSS

4.7

EPSS

0.00

KEV

Exploits

cve.orgen

179 chars

There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files in Oozie's sharelib during it's creation.

NVDen

179 chars

There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files in Oozie's sharelib during it's creation.

NVDes

203 chars

Se presenta una condición de carrera en OozieSharelibCLI en Apache Oozie versiones anteriores a 5.2.1, que permite a un atacante malicioso reemplazar los archivos en sharelib de Oozie durante su creación

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	4.7	1.0	3.6	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N