Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Big SQL component in IBM InfoSphere BigInsights 3.0 through 3.0.0.2 allows remote authenticated users to bypass intended HDFS data-access restrictions via (1) a crafted CREATE HADOOP TABLE statement referencing the data of an arbitrary user or (2) an import of a certain Hive table definition with the HCAT_SYNC_OBJECTS procedure.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM InfoSphere BigInsights Big SQL 安全漏洞
Vulnerability Description
IBM InfoSphere BigInsights是美国IBM公司一套用于储存和分析“大数据”的软件平台。该平台为管理和分析海量的结构化和非结构化数据提供了解决方案。Big SQL是其中的一个SQL接口组件。 IBM InfoSphere BigInsights 3.0版本至3.0.0.2版本的Big SQL组件中存在安全漏洞,该漏洞源于当程序处理‘CREATE HADOOP TABLE’声明或‘HCAT_SYNC_OBJECTS’程序时存在错误。远程攻击者可利用该漏洞绕过既定的HDFS数据访问限制。
CVSS Information
N/A
Vulnerability Type
N/A