Unprotected Local Resource Vulnerability in Apache Hive 2.3.3 and 3.1.0

Unprotected Local Resource Vulnerability in Apache Hive 2.3.3 and 3.1.0

CVE-2018-11777 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:N

In Apache Hive 2.3.3, 3.1.0 and earlier, local resources on HiveServer2 machines are not properly protected against malicious user if ranger, sentry or sql standard authorizer is not in use.

Learn more about our Cis Benchmark Audit For Apache Http Server.