Description
In environments that use external location for hive tables, Hive Authorizer in Apache Ranger before 0.7.1 should be checking RWX permission for create table.
Remediation
References
https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger
http://www.securityfocus.com/bid/98961
Related Vulnerabilities
CVE-2022-23496 Vulnerability in maven package nl.basjes.parse.useragent:yauaa-nifi-parent
CVE-2023-37466 Vulnerability in maven package org.webjars.npm:vm2
CVE-2023-38690 Vulnerability in npm package matrix-appservice-irc
CVE-2023-52079 Vulnerability in npm package msgpackr
CVE-2020-14340 Vulnerability in maven package org.jboss.xnio:xnio-api