CVE-2016-8752: Improper Access Control

May 17, 2022 (updated November 4, 2022)

Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.

References

github.com/advisories/GHSA-m2rr-h6g4-9cm9
nvd.nist.gov/vuln/detail/CVE-2016-8752

Code Behaviors & Features

Detect and mitigate CVE-2016-8752 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →