CVE-2016-8746

Summary

Apache Ranger before 0.6.3 policy engine incorrectly matches paths in certain conditions when policy does not contain wildcards and has recursion flag set to true.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Ranger0.6.0 - 0.6.2affected

Weaknesses

  • Authorization

ADP Enrichment

CVE Program Container

Additional References

References