Description
Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like my*test, test*.txt. This can result in unintended behavior.
Remediation
References
http://www.securityfocus.com/bid/98958
https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger
Related Vulnerabilities
CVE-2020-2186 Vulnerability in maven package org.jenkins-ci.plugins:ec2
CVE-2023-33202 Vulnerability in maven package org.bouncycastle:bc-fips
CVE-2016-10651 Vulnerability in npm package webdriver-launcher
CVE-2019-19771 Vulnerability in npm package bpi39
CVE-2020-7760 Vulnerability in maven package org.apache.marmotta.webjars:codemirror