CVE-2021-36372 – In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to …

19 November 2021

Vuln ID: CVE-2021-36372

Published: 2021-11-19 10:15:07Z

Description: In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked.

Source: NVD.NIST.GOV

Date:

19 November 2021

Categories:

NVD

Tags:

NVD

Week in review: PoC for Splunk Enterprise RCE flaw released, scope of Okta breach widens3 December 2023
Active Attacks Targeting Google Chrome & ownCloud Flaws: CISA Warns2 December 2023
ChatGPT Spit Out Sensitive Data When Told to Repeat ‘Poem’ Forever2 December 2023
CISA and Partners Release Joint Advisory on IRGC-Affiliated Cyber Actors Exploiting PLCs2 December 2023
Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.2 December 2023