VYPR
Unrated severityNVD Advisory· Published Oct 24, 2018· Updated Sep 16, 2024

CVE-2018-11785

CVE-2018-11785

Description

Missing authorization check in Apache Impala before 3.0.1 allows a Kerberos-authenticated but unauthorized user to inject random data into a running query, leading to wrong results for a query.

Affected products

2
  • Apache/Impalallm-fuzzy
    Range: <3.0.1
  • Apache Software Foundation/Apache Impalav5
    Range: Apache Impala 3.0.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.