Medium severity6.5NVD Advisory· Published Apr 12, 2016· Updated Jun 17, 2026
CVE-2015-5167
CVE-2015-5167
Description
The Policy Admin Tool in Apache Ranger before 0.5.1 allows remote authenticated users to bypass intended access restrictions via the REST API.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.ranger:rangerMaven | < 0.5.1 | 0.5.1 |
Affected products
2Patches
Vulnerability mechanics
References
7- cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+RangernvdVendor AdvisoryWEB
- github.com/advisories/GHSA-qqg7-gcxw-gmj3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2015-5167ghsaADVISORY
- mail-archives.apache.org/mod_mbox/ranger-dev/201602.mbox/%3CD2D9A4C5.114ECA%25vel%40apache.org%3EnvdWEB
- mail-archives.apache.org/mod_mbox/ranger-dev/201602.mbox/%3CD2D9A4C5.114ECA%25vel@apache.org%3EghsaWEB
- web.archive.org/web/20200501000000*/http://www.securityfocus.com/bid/82871ghsaWEB
- www.securityfocus.com/bid/82871nvd
News mentions
0No linked articles in our index yet.