Security Advisory
CVE-2018-11785
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Missing authorization check in Apache Impala before 3.0.1 allows a Kerberos-authenticated but unauthorized user to inject random data into a running query, leading to wrong results for a query.