CVE-2021-39232
maven/org.apache.ozone/ozone
Incorrect Authorization
In Apache Ozone, certain admin related SCM commands can be executed by any authenticated users, not just by admins.
All versions before 1.2.0
Upgrade to version 1.2.0 or above.
2021-11-22
source |