Security Advisory

CVE-2017-9796

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-01-10 03:00:00

Last updated 2024-09-17 00:16:51

Assigner apache

State PUBLISHED

Description

When an Apache Geode cluster before v1.3.0 is operating in secure mode, a user with read access to specific regions within a Geode cluster may execute OQL queries containing a region name as a bind parameter that allow read access to objects within unauthorized regions.

← Browse all CVEs View on cve.org ↗