CVE-2016-6815

In Apache Ranger before 0.6.2, users with "keyadmin" role should not be allowed to change password for users with "admin" role.

Date published : 2017-10-13

http://www.securityfocus.com/bid/94221

https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger