VYPR

Maven package

org.apache.ranger/ranger-plugins-common

pkg:maven/org.apache.ranger/ranger-plugins-common

Vulnerabilities (2)

  • CVE-2025-59059Mar 3, 2026
    affected < 2.8.0fixed 2.8.0

    Remote Code Execution Vulnerability in NashornScriptEngineCreator is reported in Apache Ranger versions <= 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue.

  • CVE-2016-8746MedJun 14, 2017
    affected < 0.6.3fixed 0.6.3

    Apache Ranger before 0.6.3 policy engine incorrectly matches paths in certain conditions when policy does not contain wildcards and has recursion flag set to true.