Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.apache.ranger:ranger

maven

Security for Enforcing Enterprise Policies

View on github.com · View on repo1.maven.org

Security Advisories for org.apache.ranger:ranger in maven

Critical
9 months ago

Apache Ranger UI vulnerable to Server Side Request Forgery GSA_kwCzR0hTQS1nOWdmLWc1anEtOWgzds4ABDqr

maven org.apache.ranger:ranger
Moderate
9 months ago

Apache Ranger has Stored Cross-site Scripting vulnerability in Edit Service Page GSA_kwCzR0hTQS12cngyLW1ncjktdjY3aM4ABDqp

maven org.apache.ranger:ranger
High
about 2 years ago

Apache Ranger code execution vulnerability in policy expressions GSA_kwCzR0hTQS04OWd3LWNmZmotbXFnOc4AA0Yk

maven org.apache.ranger:ranger
Moderate
over 3 years ago

Apache Ranger Cross-site Scripting vulnerability GSA_kwCzR0hTQS04M20yLTlnNzgtcnJqNM4AAdZT

maven org.apache.ranger:ranger
High
over 3 years ago

Apache Ranger allows users to bypass intended access restrictions via direct access to module URLs GSA_kwCzR0hTQS03Y2N2LWhodmMtNjJoZ84AAdZK

maven org.apache.ranger:ranger
Moderate
over 3 years ago

Apache Ranger allows users to bypass intended access restrictions via the REST API GSA_kwCzR0hTQS1xcWc3LWdjeHctZ21qM84AAdY3

maven org.apache.ranger:ranger
High
over 3 years ago

Apache Ranger Access Restriction Bypass GSA_kwCzR0hTQS0yMnY3LXc2YzUtdjRycs4AAdYW

maven org.apache.ranger:ranger
Moderate
about 6 years ago

Cross-site scripting in Apache Ranger MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwcXAtdjMyMy00NHh2

maven org.apache.ranger:ranger
Moderate
almost 7 years ago

Moderate severity vulnerability that affects org.apache.ranger:ranger MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmamgtZmpnZy1tZnBx

maven org.apache.ranger:ranger
Critical
almost 7 years ago

Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '' wildcard character MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1OG0tNmczcS1nM2ho

maven org.apache.ranger:ranger
High
almost 7 years ago

UnixAuthenticationService in Apache Ranger was updated to correctly handle user input to avoid Stack-based buffer overflow MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5OWgtZmdxbS02Njc5

maven org.apache.ranger:ranger
Moderate
almost 7 years ago

Apache Ranger admin users can store some arbitrary javascript code to be executed when normal users login and access policies MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3bWYtcWd4Zi1xbXZm

maven org.apache.ranger:ranger
Moderate
almost 7 years ago

Moderate severity vulnerability that affects org.apache.ranger:ranger MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZoeGMtOGpqcS04NTlq

maven org.apache.ranger:ranger
Moderate
almost 7 years ago

Apache Ranger allows remote authenticated administrators to inject arbitrary web script or HTML MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmN3EteHFtMy02OTIz

maven org.apache.ranger:ranger
High
almost 7 years ago

SQL injection vulnerability in the policy admin tool in Apache Ranger MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyamYtbXhmbS05OGg1

maven org.apache.ranger:ranger
Critical
almost 7 years ago

The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4NGMtajhxbS1nNDdy

maven org.apache.ranger:ranger

Filter by Severity

Moderate 8 High 5 Critical 3