Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-8028

An authenticated user can execute ALTER TABLE EXCHANGE PARTITIONS without being authorized by Apache Sentry before 2.0.1. This can allow an attacker unauthorized access to the partitioned data of a Sentry protected table and can allow an attacker to remove data from a Sentry protected table.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.3%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2018-8028
  • Apache » Sentry » Version: 1.0.0
    cpe:2.3:a:apache:sentry:1.0.0
  • Apache » Sentry » Version: 1.1.0
    cpe:2.3:a:apache:sentry:1.1.0
  • Apache » Sentry » Version: 1.2.0
    cpe:2.3:a:apache:sentry:1.2.0
  • Apache » Sentry » Version: 1.5.1
    cpe:2.3:a:apache:sentry:1.5.1
  • Apache » Sentry » Version: 1.6.0
    cpe:2.3:a:apache:sentry:1.6.0
  • Apache » Sentry » Version: 1.7.0
    cpe:2.3:a:apache:sentry:1.7.0
  • Apache » Sentry » Version: 1.7.1
    cpe:2.3:a:apache:sentry:1.7.1
  • Apache » Sentry » Version: 1.8.0
    cpe:2.3:a:apache:sentry:1.8.0
  • Apache » Sentry » Version: 2.0.0
    cpe:2.3:a:apache:sentry:2.0.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved