Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2016-6815

Disclosure Date: October 13, 2017 (last updated November 26, 2024)
In Apache Ranger before 0.6.2, users with "keyadmin" role should not be allowed to change password for users with "admin" role.
0
0
Attacker Value
Unknown

CVE-2016-5395

Disclosure Date: September 26, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in the create user functionality in the policy admin tool in Apache Ranger before 0.6.1 allows remote authenticated administrators to inject arbitrary web script or HTML via vectors related to policies.
0
0