CVE-2017-12625

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2017-12625

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-12625.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-12625

Aliases

GHSA-2g9q-chq2-w8qw

Published

2017-11-01T13:29:00.583Z

Modified

2026-04-10T03:59:33.902966Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

Apache Hive 2.1.x before 2.1.2, 2.2.x before 2.2.1, and 2.3.x before 2.3.1 expose an interface through which masking policies can be defined on tables or views, e.g., using Apache Ranger. When a view is created over a given table, the policy enforcement does not happen correctly on the table for masked columns.

References

Affected packages

Git / github.com/apache/hive

Affected ranges

Type

GIT

Repo

https://github.com/apache/hive

Events

Introduced

Last affected

9265bc24d75ac945bde9ce1a0999fddd8f2aae29

Introduced

Last affected

1af77bbf8356e86cabbed92cfa8cc2e1470a1d5c

Introduced

Last affected

bd94a9c7ecf32662d59734d70d76bc187febf05d

Introduced

Last affected

30e6745a63b81be2ed58f4dce13e1d83f518f632

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.0"
        }
    ]
}

Affected versions

rel/release-2.*

rel/release-2.1.0

rel/release-2.1.1

rel/storage-release-2.*

rel/storage-release-2.2.0

rel/storage-release-2.3.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-12625.json"