High severity7.5NVD Advisory· Published Aug 29, 2017· Updated May 13, 2026
CVE-2017-3154
CVE-2017-3154
Description
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.atlas:atlas-commonMaven | >= 0.6.0-incubating, < 0.7.1-incubating | 0.7.1-incubating |
Affected products
7- Apache Software Foundation/Apache Atlasv5Range: 0.6.0-incubating
cpe:2.3:a:apache:atlas:0.6.0:rc2:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:apache:atlas:0.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:apache:atlas:0.7.0:rc2:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- github.com/advisories/GHSA-fx92-wh72-8g9qghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-3154ghsaADVISORY
- www.securityfocus.com/bid/100581nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/apache-atlas/PYSEC-2017-110.yamlghsaWEB
- lists.apache.org/thread.html/4a4fef91e067fd0d9da569e30867c1fa65e2a0520acde71ddefee0ea%40%3Cdev.atlas.apache.org%3EnvdWEB
- lists.apache.org/thread.html/4a4fef91e067fd0d9da569e30867c1fa65e2a0520acde71ddefee0ea@%3Cdev.atlas.apache.org%3EghsaWEB
News mentions
0No linked articles in our index yet.