Description
Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like my*test, test*.txt. This can result in unintended behavior.
Remediation
References
https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger
http://www.securityfocus.com/bid/98958
Related Vulnerabilities
CVE-2024-1597 Vulnerability in maven package org.postgresql:postgresql
CVE-2020-6427 Vulnerability in maven package org.webjars.npm:electron
CVE-2022-34184 Vulnerability in maven package org.jenkins-ci.plugins:crx-content-package-deployer
CVE-2022-3978 Vulnerability in npm package nodebb
CVE-2019-10367 Vulnerability in maven package io.jenkins:configuration-as-code