High severity7.1NVD Advisory· Published Apr 11, 2016· Updated Jun 17, 2026
CVE-2015-0266
CVE-2015-0266
Description
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.ranger:rangerMaven | < 0.5.0 | 0.5.0 |
Affected products
2Patches
Vulnerability mechanics
References
8- www.slideshare.net/wojdwo/big-problems-with-big-data-hadoop-interfaces-securitynvdExploitWEB
- cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+RangernvdVendor AdvisoryWEB
- github.com/advisories/GHSA-7ccv-hhvc-62hgghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2015-0266ghsaADVISORY
- mail-archives.apache.org/mod_mbox/ranger-dev/201508.mbox/%3CD1E7EC30.9D53F%25vel%40apache.org%3EnvdWEB
- mail-archives.apache.org/mod_mbox/ranger-dev/201508.mbox/%3CD1E7EC30.9D53F%25vel@apache.org%3EghsaWEB
- web.archive.org/web/20200228073944/http://www.securityfocus.com/bid/76221ghsaWEB
- www.securityfocus.com/bid/76221nvd
News mentions
0No linked articles in our index yet.