The Admin UI in Apache Ranger prior to 0.5.1 does not properly handle authentication requests that lack a password, which allows remote malicious users to bypass authentication by leveraging knowledge of a valid username.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache ranger |