High severity7.5NVD Advisory· Published Aug 29, 2017· Updated May 13, 2026
CVE-2016-8752
CVE-2016-8752
Description
Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.atlas:atlas-commonMaven | >= 0.6.0-incubating, < 0.8-incubating | 0.8-incubating |
Affected products
11cpe:2.3:a:apache:atlas:0.6.0:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:apache:atlas:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.1:rc2:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.1:rc3:*:*:*:*:*:*
- Apache Software Foundation/Apache Atlasv5Range: 0.6.0-incubating
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/advisories/GHSA-m2rr-h6g4-9cm9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-8752ghsaADVISORY
- github.com/pypa/advisory-database/tree/main/vulns/apache-atlas/PYSEC-2017-105.yamlghsaWEB
- lists.apache.org/thread.html/f7435d66b840daa2a38ad1329d639b70f5a9476e7580ae885d422e86%40%3Cdev.atlas.apache.org%3EnvdWEB
- lists.apache.org/thread.html/f7435d66b840daa2a38ad1329d639b70f5a9476e7580ae885d422e86@%3Cdev.atlas.apache.org%3EghsaWEB
News mentions
0No linked articles in our index yet.