Vulnerabilities > Apache > Oozie > 3.3.0

DATE CVE VULNERABILITY TITLE RISK
2021-03-09 CVE-2020-35451 Race Condition vulnerability in Apache Oozie
There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files in Oozie's sharelib during it's creation.
local
high complexity
apache CWE-362
4.7
4.7
2018-12-19 CVE-2018-11799 Improper Input Validation vulnerability in Apache Oozie
Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 5.0.0 to impersonate other users.
network
low complexity
apache CWE-20
6.5
6.5
2018-02-19 CVE-2017-15712 Path Traversal vulnerability in Apache Oozie
Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 4.3.0 and 5.0.0-beta1 to expose private files on the Oozie server process.
network
low complexity
apache CWE-22
6.5
6.5