CVE-2021-39235 – In Apache Ozone before 1.2.0, Ozone Datanode doesn’t check the access mode parameter of th …

19 November 2021

Vuln ID: CVE-2021-39235

Published: 2021-11-19 10:15:08Z

Description: In Apache Ozone before 1.2.0, Ozone Datanode doesn’t check the access mode parameter of the block token. Authenticated users with valid READ block token can do any write operation on the same block.

Source: NVD.NIST.GOV

Date:

19 November 2021

Categories:

NVD

Tags:

NVD

Exploiting GOG Galaxy XPC service for privilege escalation in macOS7 December 2023
Think Twice Before Giving Surveillance for the Holidays7 December 2023
Microsoft’s CISO Bret Arsenault to helm Chief Security Advisor position7 December 2023
Russian Star Blizzard hackers linked to efforts to hamper war crimes investigation7 December 2023
Akamai discovers Active Directory DNS spoofing exploit7 December 2023