org.apache.hbase:hbase
Maven2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting org.apache.hbase:hbasepage 1 of 1
- CVE-2015-1836HIGHCVSS 7.3EG 7.3✓ Fixed in 1.1.0.12015-12-21
vulnerable: 1.1.0
Apache HBase 0.98 before 0.98.12.1, 1.0 before 1.0.1.1, and 1.1 before 1.1.0.1, as used in IBM InfoSphere BigInsights 3.0, 3.0.0.1, and 3.0.0.2 and other products, uses incorrect ACLs for ZooKeeper coordination state, which allows remote a…
- CVE-2019-0212HIGHCVSS 7.5EG 7.5✓ Fixed in 2.1.42019-03-28
vulnerable: 2.1.0, 2.1.1, 2.1.2, 2.1.3
In all previously released Apache HBase 2.x versions (2.0.0-2.0.4, 2.1.0-2.1.3), authorization was incorrectly applied to users of the HBase REST server. Requests sent to the HBase REST server were executed with the permissions of the REST…
Check whether org.apache.hbase:hbase is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.apache.hbase:hbase CVEs against the assets you own.
Start Free Scan →