CVE-2018-1314 is a vulnerability in Apache Hive
Published on November 8, 2018

In Apache Hive 2.3.3, 3.1.0 and earlier, Hive "EXPLAIN" operation does not check for necessary authorization of involved entities in a query. An unauthorized user can do "EXPLAIN" on arbitrary table or view and expose table metadata and statistics.

NVD

Products Associated with CVE-2018-1314

Want to know whenever a new CVE is published for Apache Hive? stack.watch will email you.

Apache Hive

Affected Versions

Apache Software Foundation Apache Hive Version All versions of Hive including 2.3.3, 3.1.0 and earlier is affected by CVE-2018-1314

Exploit Probability

EPSS

0.69%

Percentile

71.50%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-1314 is a vulnerability in Apache HivePublished on November 8, 2018

Products Associated with CVE-2018-1314

Affected Versions

Exploit Probability

CVE-2018-1314 is a vulnerability in Apache Hive
Published on November 8, 2018