CVE-2016-6815

CVE-2016-6815

EPSS 2.1%

In Apache Ranger before 0.6.2, users with "keyadmin" role should not be allowed to change password for users with "admin" role.

Affected products

Apache Software Foundation · Apache Ranger

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger http://www.securityfocus.com/bid/94221