Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Accumulo Improper Handling of Insufficient Permissions
Vulnerability Description
Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not properly check the return value of some policy enforcement functions before permitting an authenticated user to perform certain administrative operations. Specifically, the return values of the 'canFlush' and 'canPerformSystemActions' security functions are not checked in some instances, therefore allowing an authenticated user with insufficient permissions to perform the following actions: flushing a table, shutting down Accumulo or an individual tablet server, and setting or removing system-wide Accumulo configuration properties.
CVSS Information
N/A
Vulnerability Type
未加检查的返回值
Vulnerability Title
Apache Accumulo 安全漏洞
Vulnerability Description
Apache Accumulo是Apache基金会的一个可靠的、可伸缩的、高性能的排序分布式的 Key-Value 存储应用。 Apache Accumulo 1.5.0版本至1.10.0版本,2.0.0版本存在安全漏洞,该漏洞源于经过身份验证的用户执行某些管理操作之前,没有正确地检查一些策略实施函数的返回值。
CVSS Information
N/A
Vulnerability Type
N/A