Apache Software Foundation Hive 2.7.0 Release Candidate 0

CPE Details

Apache Software Foundation Hive 2.7.0 Release Candidate 0
apache
hive
2.7.0
2019-05-30
15h32 +00:00
2019-05-30
15h32 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:apache:hive:2.7.0:rc0:*:*:*:*:*:*

Informations

Vendor

apache

Product

hive

Version

2.7.0

Update

rc0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-34538 2022-07-16 05h10 +00:00 Apache Hive before 3.1.3 "CREATE" and "DROP" function operations does not check for necessary authorization of involved entities in the query. It was found that an unauthorized user can manipulate an existing UDF without having the privileges to do so. This allowed unauthorized or underprivileged users to drop and recreate UDFs pointing them to new jars that could be potentially malicious.
7.5
Haute
CVE-2020-13949 2021-02-12 18h39 +00:00 In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.
7.5
Haute