High severity vulnerability was found in maven org.apache.ozone:ozone-main (maven) .

In Apache Ozone before 1.2.0, Authenticated users with valid Ozone S3 credentials can create specific OM requests, impersonating any other user.

References


Courtesy:https://github.com/advisories/GHSA-5993-wwpg-m92c

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *