cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-35451,https://securityvulnerability.io/vulnerability/CVE-2020-35451,Oozie local privilege escalation,There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files in Oozie's sharelib during it's creation.,Apache,Apache Oozie,4.7,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2021-03-09T15:20:13.000Z,0
CVE-2018-11799,https://securityvulnerability.io/vulnerability/CVE-2018-11799,,Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 5.0.0 to impersonate other users. The malicious user can construct an XML that results workflows running in other user's name.,Apache,Apache Oozie,6.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2018-12-19T20:00:00.000Z,0
CVE-2017-15712,https://securityvulnerability.io/vulnerability/CVE-2017-15712,,Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 4.3.0 and 5.0.0-beta1 to expose private files on the Oozie server process. The malicious user can construct a workflow XML file containing XML directives and configuration that reference sensitive files on the Oozie server host.,Apache,Apache Oozie,6.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2018-02-19T14:29:00.000Z,0