CVE-2023-34340

CVE-2023-34340: Apache Accumulo: Accumulo 2.1.0 may incorrectly validate cached credentials

Vendor Apache Software Foundation

Product Apache Accumulo

Weakness CWE-287 · Improper authentication

Published June 21, 2023

Last update October 9, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Improper Authentication vulnerability in Apache Software Foundation Apache Accumulo. This issue affects Apache Accumulo: 2.1.0. Accumulo 2.1.0 contains a defect in the user authentication process that may succeed when invalid credentials are provided. Users are advised to upgrade to 2.1.1.

Key dates

Disclosure timeline

June 21, 2023 CVE published

October 9, 2024 Record updated