Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-GRC3-8Q8M-4J7C
HistoryFeb 09, 2022 - 10:37 p.m.

Improper privilege handling in Apache Accumulo

2022-02-0922:37:59
CWE-252
CWE-280
CWE-732
GitHub Advisory Database
github.com
15

0.001 Low

EPSS

Percentile

46.9%

JSON

Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not properly check the return value of some policy enforcement functions before permitting an authenticated user to perform certain administrative operations. Specifically, the return values of the ‘canFlush’ and ‘canPerformSystemActions’ security functions are not checked in some instances, therefore allowing an authenticated user with insufficient permissions to perform the following actions: flushing a table, shutting down Accumulo or an individual tablet server, and setting or removing system-wide Accumulo configuration properties.

Related

osv 2
cvelist 1
prion 1
veracode 1
cve 1
githubexploit 1
osv
osv
CVE-2020-17533
2020-12-29 12:15:12
Improper privilege handling in Apache Accumulo
2022-02-09 22:37:59
cvelist
cvelist
CVE-2020-17533 Apache Accumulo Improper Handling of Insufficient Permissions
2020-12-29 11:30:13
prion
prion
Code injection
2020-12-29 12:15:00
veracode
veracode
Authorization Bypass
2020-12-30 01:49:00
cve
cve
CVE-2020-17533
2020-12-29 12:15:00
githubexploit
githubexploit
Exploit for Incorrect Permission Assignment for Critical Resource in Apache Accumulo
2020-12-09 12:34:54

0.001 Low

EPSS

Percentile

46.9%

JSON
Related for GHSA-GRC3-8Q8M-4J7C
osv2cvelist1prion1veracode1cve1githubexploit1