Apache Ranger Policy Resource Matcher Wildcard Character Vulnerability

CVE-2017-7676 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like my*test, test*.txt. This can result in unintended behavior.

Learn more about our Cis Benchmark Audit For Apache Http Server.