CVE-2018-11785 : What You Need to Know
Learn about CVE-2018-11785 affecting Apache Impala versions before 3.0.1. Unauthorized users can inject data into queries, leading to incorrect results. Find mitigation steps here.
Apache Impala versions prior to 3.0.1 have a vulnerability where an unauthorized user, authenticated with Kerberos, can inject arbitrary data into a running query, leading to incorrect results.
Understanding CVE-2018-11785
Apache Impala 3.0.0 vulnerability allowing unauthorized users to manipulate running queries.
What is CVE-2018-11785?
- Apache Impala before version 3.0.1 is susceptible to unauthorized users injecting data into queries.
The Impact of CVE-2018-11785
- Unauthorized users can alter running queries, resulting in inaccurate query outcomes.
Technical Details of CVE-2018-11785
Apache Impala vulnerability details.
Vulnerability Description
- Missing authorization check in Apache Impala pre-3.0.1 allows Kerberos-authenticated unauthorized users to inject data into queries.
Affected Systems and Versions
- Product: Apache Impala
- Vendor: Apache Software Foundation
- Vulnerable Version: Apache Impala 3.0.0
Exploitation Mechanism
- Unauthorized users authenticated with Kerberos can manipulate running queries.
Mitigation and Prevention
Protecting systems from CVE-2018-11785.
Immediate Steps to Take
- Upgrade to Apache Impala version 3.0.1 or higher.
- Implement strict access controls and authorization mechanisms.
Long-Term Security Practices
- Regularly review and update access control policies.
- Conduct security training to educate users on query manipulation risks.
Patching and Updates
- Apply patches and updates provided by Apache Software Foundation to address the vulnerability.