CVE-2019-12397
published 2019-08-08CVE-2019-12397: Policy import functionality in Apache Ranger 0.7.0 to 1.2.0 is vulnerable to a cross-site scripting issue. Upgrade to 2.0.0 or later version of Apache Ranger…
medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
Policy import functionality in Apache Ranger 0.7.0 to 1.2.0 is vulnerable to a cross-site scripting issue. Upgrade to 2.0.0 or later version of Apache Ranger with the fix.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | ranger | 0.7.0 – 1.2.0 | — |
| apache_software_foundation | apache_ranger | — | — |