org.apache.atlas:atlas-common
Maven7 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting org.apache.atlas:atlas-commonpage 1 of 1
- CVE-2016-8752HIGHCVSS 7.5EG 7.5✓ Fixed in 0.8-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating, 0.7.1-incubating
Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.
- CVE-2017-3150MEDIUMCVSS 6.1EG 6.1✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script.
- CVE-2017-3151MEDIUMCVSS 6.1EG 6.1✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Site Scripting in the edit-tag functionality.
- CVE-2017-3152MEDIUMCVSS 6.1EG 6.1✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality.
- CVE-2017-3153MEDIUMCVSS 6.1EG 6.1✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS in the search functionality.
- CVE-2017-3154HIGHCVSS 7.5EG 7.5✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information.
- CVE-2017-3155MEDIUMCVSS 6.1EG 6.1✓ Fixed in 0.7.1-incubating2017-08-29
vulnerable: 0.6-incubating, 0.7-incubating
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scripting.
Check whether org.apache.atlas:atlas-common is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.apache.atlas:atlas-common CVEs against the assets you own.
Start Free Scan →