VYPR

Hbase

by Apache

Source repositories

CVEs (2)

  • CVE-2015-1836HigDec 21, 2015
    risk 0.48cvss 7.3epss 0.07

    Apache HBase 0.98 before 0.98.12.1, 1.0 before 1.0.1.1, and 1.1 before 1.1.0.1, as used in IBM InfoSphere BigInsights 3.0, 3.0.0.1, and 3.0.0.2 and other products, uses incorrect ACLs for ZooKeeper coordination state, which allows remote attackers to cause a denial of service…

  • CVE-2013-2193May 29, 2014
    risk 0.00cvss epss 0.01

    Apache HBase 0.92.x before 0.92.3 and 0.94.x before 0.94.9, when the Kerberos features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via unspecified vectors.