User Impersonation Vulnerability in Apache Storm

User Impersonation Vulnerability in Apache Storm

CVE-2018-1332 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

Apache Storm version 1.0.6 and earlier, 1.2.1 and earlier, and version 1.1.2 and earlier expose a vulnerability that could allow a user to impersonate another user when communicating with some Storm Daemons.

Learn more about our User Device Pen Test.