CVE-2015-1772

EPSS 0.16% · P37 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-1772

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The LDAP implementation in HiveServer2 in Apache Hive before 1.0.1 and 1.1.x before 1.1.1, as used in IBM InfoSphere BigInsights 3.0, 3.0.0.1, and 3.0.0.2 and other products, mishandles simple unauthenticated and anonymous bind configurations, which allows remote attackers to bypass authentication via a crafted LDAP request.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apache Hive HiveServer2接口授权问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM InfoSphere BigInsights是美国IBM公司的一套用于储存和分析 “大数据” 的软件平台。该平台为管理和分析海量的结构化和非结构化数据提供了解决方案。Apache Hive是美国阿帕奇（Apache）软件基金会的一套基于Hadoop（分布式系统基础架构）的数据仓库软件。该软件提供了一个数据集成方法和一种高级的查询语言，以支持在Hadoop上进行大规模数据分析。 IBM InfoSphere BigInsights中使用的Apache Hive的HiveServer2接口中的LDAP

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-1772

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-1772

请登录查看更多情报信息。

https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.htmlx_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21969546x_refsource_CONFIRM
http://www.securitytracker.com/id/1034365vdb-entryx_refsource_SECTRACK
http://mail-archives.apache.org/mod_mbox/www-announce/201505.mbox/%3CCAOpgucy52yzNN1FaRcxwhZmx8ZtNRjmK6V0Bxk4svAD-R1q70Q%40mail.gmail.com%3Emailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2015-1772

Same Patch Batch · n/a · 2015-12-21 · 16 CVEs total

CVE-2015-4545		EMC Isilon OneFS 权限许可和访问控制漏洞
CVE-2015-1836		Apache HBase 权限许可和访问控制漏洞
CVE-2015-4993		IBM WebSphere Portal 跨站脚本漏洞
CVE-2015-4998		IBM WebSphere Portal 跨站脚本漏洞
CVE-2015-5001		IBM WebSphere Portal 资源管理错误漏洞
CVE-2015-6480		Moxa OnCell Central Manager Software 授权问题漏洞
CVE-2015-6481		Moxa OnCell Central Manager Software 任意代码执行漏洞
CVE-2015-7907		Honeywell International Midas和Midas Black 目录遍历漏洞
CVE-2015-7919		SearchBlox File Exfiltration 权限许可和访问控制漏洞
CVE-2015-7413		IBM WebSphere Portal 跨站脚本漏洞
CVE-2015-7906		多款LOYTEC设备信任管理漏洞
CVE-2015-7908		Honeywell International Midas和Midas Black 安全漏洞
CVE-2015-7937		Schneider Electric Modicon M340 PLC BMXNOx和BMXPx 基于栈的缓冲区溢出漏洞
CVE-2015-8458		多款Adobe产品基于堆的缓冲区错误漏洞
CVE-2015-6934		多款Vmware产品输入验证漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-1772

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-1772

I. Basic Information for CVE-2015-1772

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-1772

III. Intelligence Information for CVE-2015-1772

Same Patch Batch · n/a · 2015-12-21 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-1772

Leave a comment