Unauthenticated Container Access in Apache Ozone Datanode

CVE-2021-39233 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

In Apache Ozone versions prior to 1.2.0, Container related Datanode requests of Ozone Datanode were not properly authorized and can be called by any client.

Learn more about our Cis Benchmark Audit For Apache Http Server.