Atlas@0.6.0 Security Vulnerabilities and Issues — Atlas@0.6.0 CVE List

Lucene search

ApacheAtlas0.6.0

7 matches found

CVE•added 2017/08/29 8:29 p.m.•70 views

CVE-2017-3150

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script.

6.1CVSS6.1AI score0.01019EPSS

CVE•added 2017/08/29 8:29 p.m.•68 views

CVE-2017-3154

Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information.

7.5CVSS6.7AI score0.00825EPSS

CVE•added 2017/08/29 8:29 p.m.•63 views

CVE-2017-3153

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS in the search functionality.

6.1CVSS6AI score0.0144EPSS

CVE•added 2017/08/29 8:29 p.m.•61 views

CVE-2017-3155

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scripting.

6.1CVSS6AI score0.01943EPSS

CVE•added 2017/08/29 8:29 p.m.•59 views

CVE-2017-3152

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality.

6.1CVSS5.9AI score0.0144EPSS

CVE•added 2017/08/29 8:29 p.m.•58 views

CVE-2016-8752

Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.

7.5CVSS7.4AI score0.0102EPSS

CVE•added 2017/08/29 8:29 p.m.•58 views

CVE-2017-3151

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Site Scripting in the edit-tag functionality.

6.1CVSS5.9AI score0.01019EPSS