VYPR

Ozone

by Apache

Source repositories

CVEs (1)

  • CVE-2020-17517HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.02

    The S3 buckets and keys in a secure Apache Ozone Cluster must be inaccessible to anonymous access by default. The current security vulnerability allows access to keys and buckets through a curl command or an unauthenticated HTTP request. This enables unauthorized access to…