Lucene search
F5F5:K43254923HistoryJul 07, 2016 - 12:00 a.m.
K43254923 : Apache Ranger vulnerability CVE-2016-2174
2016-07-0700:00:00
my.f5.com
14
Security Advisory Description
SQL injection vulnerability in the policy admin tool in Apache Ranger before 0.5.3 allows remote authenticated administrators to execute arbitrary SQL commands via the eventTime parameter to service/plugins/policies/eventTime. (CVE-2016-2174)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
prion
prion
Sql injection
2016-06-13 14:59:00
nvd
nvd
CVE-2016-2174
2016-06-13 14:59:02
seebug
seebug
cvelist
cvelist
CVE-2016-2174
2016-06-13 14:00:00
github
github
SQL injection vulnerability in the policy admin tool in Apache Ranger
2018-10-17 17:21:29
cve
cve
CVE-2016-2174
2016-06-13 14:59:02
osv
osv
SQL injection vulnerability in the policy admin tool in Apache Ranger
2018-10-17 17:21:29
f5
f5
SOL43254923 - Apache Ranger vulnerability CVE-2016-2174
2016-07-07 00:00:00