Lucene search
China National Vulnerability DatabaseCNVD-2021-91281HistoryNov 24, 2021 - 12:00 a.m.
Apache Ozone Access Control Error Vulnerability
2021-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
apache ozone
access control
vulnerability
permissions
metadata
sensitive data
EPSS
0.001
Percentile
24.7%
Apache Ozone is an application. A scalable, redundant and distributed object store for Hadoop and cloud-native environments, an access control error vulnerability exists in Apache Ozone that stems from the product not adding valid permissions for access to OM, SCM and Datanode metadata. An attacker could access sensitive data through this vulnerability.
Related
veracode
veracode
Information Disclosure
2021-11-23 14:30:31
osv
osv
Apache Ozone exposes OM, SCM and Datanode metadata
2021-11-23 18:17:50
CVE-2021-41532
2021-11-19 10:15:08
cvelist
cvelist
CVE-2021-41532 Unauthenticated access to Ozone Recon HTTP endpoints
2021-11-19 09:20:26
github
github
Apache Ozone exposes OM, SCM and Datanode metadata
2021-11-23 18:17:50
prion
prion
Code injection
2021-11-19 10:15:00
nvd
nvd
CVE-2021-41532
2021-11-19 10:15:08
cve
cve
CVE-2021-41532
2021-11-19 10:15:08