Hbase Security Vulnerabilities and Issues — Hbase CVE List

Lucene search

ApacheHbase

3 matches found

CVE•added 2019/03/28 10:29 p.m.•75 views

CVE-2019-0212

In all previously released Apache HBase 2.x versions (2.0.0-2.0.4, 2.1.0-2.1.3), authorization was incorrectly applied to users of the HBase REST server. Requests sent to the HBase REST server were executed with the permissions of the REST server itself, not with the permissions of the end-user. Th...

7.5CVSS7.3AI score0.03512EPSS

CVE•added 2015/12/21 11:59 a.m.•64 views

CVE-2015-1836

Apache HBase 0.98 before 0.98.12.1, 1.0 before 1.0.1.1, and 1.1 before 1.1.0.1, as used in IBM InfoSphere BigInsights 3.0, 3.0.0.1, and 3.0.0.2 and other products, uses incorrect ACLs for ZooKeeper coordination state, which allows remote attackers to cause a denial of service (daemon outage), obtai...

7.5CVSS7.1AI score0.02143EPSS

CVE•added 2019/08/26 6:15 p.m.•58 views

CVE-2019-15544

An issue was discovered in the protobuf crate before 2.6.0 for Rust. Attackers can exhaust all memory via Vec::reserve calls.

7.5CVSS7.4AI score0.02695EPSS