In Apache Ozone versions before 1.2.0, Various internal server-to-server RPC endpoints are available for connections, making it possible for an malicious user to download raw data from Datanode and Ozone manager and modify Ratis replication configuration.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache ozone |