SQL injection vulnerability in the policy admin tool in Apache Ranger before 0.5.3 allows remote authenticated administrators to execute arbitrary SQL commands via the eventTime parameter to service/plugins/policies/eventTime.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2016-06-13T14:00:00
Updated: 2016-06-13T12:57:01
Reserved: 2016-01-29T00:00:00
Link: CVE-2016-2174
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-06-13T14:59:02.820
Modified: 2016-06-14T12:33:10.553
Link: CVE-2016-2174
JSON object: View
Redhat Information
No data.
CWE