CVE-2016-0733 in Rangerinfo

Summary

The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password, which allows remote attackers to bypass authentication by leveraging knowledge of a valid username.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/15/2015

Disclosure

04/12/2016

Moderation

VulDB entry created

Entries

VDB-82250 (1)

CPE

ready

CWE

CWE-287 (Confirmed)

CVSS

9.8

EPSS

0.01652

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0733
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0733
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0733/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!