CVE-2024-45478
published 2025-01-21CVE-2024-45478: Stored XSS vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0. Users are recommended to upgrade to version Apache Ranger…
medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
Stored XSS vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0.
Users are recommended to upgrade to version Apache Ranger 2.5.0, which fixes this issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | ranger | >= 2.4.0 < 2.5.0 | 2.5.0 |
| apache_software_foundation | apache_ranger | >= 2.4.0 < 2.5.0 | 2.5.0 |