CVE-2017-3154

Severity

7.5HIGH

EPSS

0.8%

top 25.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedAug 29

Latest updateMay 17

Description

Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

▶Mavenorg.apache.atlas:atlas-common0.6.0-incubating — 0.7.1-incubating

▶NVDapache/atlas0.6.0, 0.7.0+1

▶CVEListV5apache_software_foundation/apache_atlas0.6.0-incubating, 0.7.0-incubating+1

GHSA

Apache Atlas produces Stack trace in error response↗2022-05-17

▶

OSV

Apache Atlas produces Stack trace in error response↗2022-05-17

▶

OSV

CVE-2017-3154: Error responses from Apache Atlas versions 0↗2017-08-29

▶

CVEList

CVE-2017-3154: Error responses from Apache Atlas versions 0↗2017-08-29

▶