Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/13 8:56 p.m.11 views

CVE-2023-39196

Improper Authentication vulnerability in Apache Ozone. The vulnerability allows an attacker to download metadata internal to the Storage Container Manager service without proper authentication. The attacker is not allowed to do any modification within the Ozone Storage Container Manager service...

5.3CVSS6.5AI score0.00794EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2024/02/07 12:56 p.m.14 views

CVE-2023-39196 Apache Ozone: Missing mutual TLS authentication in one of the service internal Ozone Storage Container Manager endpoints

Improper Authentication vulnerability in Apache Ozone. The vulnerability allows an attacker to download metadata internal to the Storage Container Manager service without proper authentication. The attacker is not allowed to do any modification within the Ozone Storage Container Manager service...

5.3CVSS5.2AI score0.00794EPSS
Exploits0References2
cve
cve
added 2024/02/07 12:56 p.m.49 views

CVE-2023-39196

CVE-2023-39196 describes an improper authentication vulnerability in Apache Ozone (affecting 1.2.0 up to 1.3.0). The issue allows an attacker to download internal metadata from the Storage Container Manager service without authenticating, but does not permit modification or access to actual user ...

5.3CVSS5.2AI score0.00794EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2024/02/07 12:56 p.m.29 views

CVE-2023-39196 Apache Ozone: Missing mutual TLS authentication in one of the service internal Ozone Storage Container Manager endpoints

Improper Authentication vulnerability in Apache Ozone. The vulnerability allows an attacker to download metadata internal to the Storage Container Manager service without proper authentication. The attacker is not allowed to do any modification within the Ozone Storage Container Manager service...

5.3CVSS5.6AI score0.00794EPSS
Exploits0References2
Rows per page
Query Builder