CVE-2016-0733
published 2016-04-12CVE-2016-0733: The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password, which allows remote attackers to bypass…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a password, which allows remote attackers to bypass authentication by leveraging knowledge of a valid username.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | ranger | <= 0.5.0 | — |