CRITICAL🇵🇱 Wersja polska

CVE-2024-55532

CVSS 9.8v3.1pub. 2025-03-03upd. 2025-05-21

Improper Neutralization of Formula Elements in Export CSV feature of Apache Ranger in Apache Ranger Version < 2.6.0. Users are recommended to upgrade to version 2.6.0, which fixes this issue.

🤖 AI Analysis
How it works

The vulnerability lies in the failure to properly neutralize so-called formula elements before placing data in the generated CSV file. A malicious user can introduce data into the system containing formulas or commands (e.g., starting with characters '=', '+', '-', '@'), which will be embedded in the exported CSV file. When a victim opens such a file in a spreadsheet application (e.g., Microsoft Excel, LibreOffice Calc), the application may automatically execute the contained formulas, including system commands or references to external resources.

Impact

An attacker can cause malicious code to be executed on the workstation of a victim who opens an infected CSV file, which may result in data theft, compromise of confidentiality, integrity, and availability of the user's resources.

Mitigation & patch

Apache Ranger should be updated to version 2.6.0 or later, which eliminates this vulnerability. Details are available on the vendor's website: https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger

Who is affected

Apache Ranger in all versions below 2.6.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Apache Ranger

    APP
    Apache
    < 2.6.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-59059CRITICAL9.8PL ✓ten sam produkt

RCE w Apache Ranger poprzez NashornScriptEngineCreator

CVE-2024-45479CRITICAL9.1PL ✓ten sam produkt

SSRF w Apache Ranger UI — podatność na stronie edycji usług

CVE-2017-7676CRITICAL9.8ten sam produkt

Policy resource matcher in Apache Ranger before 0.7.1 ignores characters after '*' wildcard character - like m...

CVE-2016-0733CRITICAL9.8ten sam produkt

The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lack a passwo...

CVE-2021-40331HIGH8.1ten sam produkt

An Incorrect Permission Assignment for Critical Resource vulnerability was found in the Apache Ranger Hive Plu...