In Apache Ozone versions prior to 1.2.0, certain admin related SCM commands can be executed by any authenticated users, not just by admins.
Fixes

Solution

No solution given by the vendor.


Workaround

Upgrade to Apache Ozone release version 1.2.0

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2024-08-04T01:58:18.342Z

Reserved: 2021-08-17T00:00:00

Link: CVE-2021-39232

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-11-19T10:15:08.157

Modified: 2024-11-21T06:18:58.203

Link: CVE-2021-39232

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.