← back
CVE-2017-7676

CVE-2017-7676

EPSS 4.2%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 4.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
14 Jun 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like my*test, test*.txt. This can result in unintended behavior.
Affected products
Apache Software Foundation · Apache Ranger

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Rangerhttp://www.securityfocus.com/bid/98958