Lucene search
K

6 matches found

vulnersOsv
vulnersOsv
added 2019/03/14 3:40 p.m.4 views

org.aksw.sparqlify:sparqlify-cli (=0.8.3), org.aksw.sparqlify:sparqlify-core (=0.8.3) +2 more potentially affected by CVE-2017-12625 via org.apache.hive:hive-service (=2.3.0)

org.apache.hive:hive-service MAVEN version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hive:hive-service and may be impacted: - org.aksw.sparqlify:sparqlify-cli =0.8.3 - org.aksw.sparqlify:sparqlify-core =0.8.3 -...

4.3CVSS6.1AI score0.01431EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2019/03/14 3:40 p.m.5 views

com.hindog.grid:grid-executor-examples_2.11 (>=1.1.0 <=2.0.1) potentially affected by CVE-2017-12625 via org.apache.hive:hive (=2.1.1)

org.apache.hive:hive MAVEN version =2.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hive:hive and may be impacted: - com.hindog.grid:grid-executor-examples2.11 =1.1.0, =2.0.1 Source cves: CVE-2017-12625 Source advisory:...

4.3CVSS6.1AI score0.01431EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2019/03/14 3:40 p.m.3 views

com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), com.wgzhao.addax:hivereader (>=5.1.0 <=6.0.11) +28 more potentially affected by CVE-2017-12625 via org.apache.hive:hive-service (>=2.1.0 <=2.1.1)

org.apache.hive:hive-service MAVEN version =2.1.0, =1.1.0, =5.1.0, =1.15.4, =1.2.0, =2.0.1, =1.2.0, =1.2.0, =1.2.0, =2.0.1, =2.0.1, =3.0.0, =2.0.0, =3.0.0, =3.0.0, =3.0.6 and more Source cves: CVE-2017-12625 Source advisory: OSV:GHSA-2G9Q-CHQ2-W8QWhttps://vulners.com/osv/OSV:GHSA-2G9Q...

4.3CVSS5.8AI score0.01431EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2019/03/14 3:40 p.m.6 views

com.amazon.emr:hive2-shims (>=5.0.0 <=5.6.0), com.scylladb.alternator:hive2-shims (>=5.6.0 <=5.8.0) potentially affected by CVE-2017-12625 via org.apache.hive:hive-exec (=2.3.0)

org.apache.hive:hive-exec MAVEN version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hive:hive-exec and may be impacted: - com.amazon.emr:hive2-shims =5.0.0, =5.6.0, =5.8.0 Source cves: CVE-2017-12625 Source advisory:...

4.3CVSS6.1AI score0.01431EPSS
Exploits3
NVD
NVD
added 2017/11/01 1:29 p.m.25 views

CVE-2017-12625

Apache Hive 2.1.x before 2.1.2, 2.2.x before 2.2.1, and 2.3.x before 2.3.1 expose an interface through which masking policies can be defined on tables or views, e.g., using Apache Ranger. When a view is created over a given table, the policy enforcement does not happen correctly on the table for...

4.3CVSS4.7AI score0.01431EPSS
Exploits3References2
CVE
CVE
added 2017/11/01 1:0 p.m.89 views

CVE-2017-12625

The CVE-2017-12625 issue affects Apache Hive: versions 2.1.x before 2.1.2, 2.2.x before 2.2.1, and 2.3.x before 2.3.1 expose an interface for defining masking policies on tables/views (e.g., via Apache Ranger). Root cause: when a view is created over a table, policy enforcement is not correctly a...

4.3CVSS4.6AI score0.01431EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder