{"id":"CVE-2024-45478","details":"Stored XSS vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0.\nUsers are recommended to upgrade to version Apache Ranger 2.5.0, which fixes this issue.","aliases":["GHSA-vrx2-mgr9-v67h"],"modified":"2026-03-17T14:32:28.904512Z","published":"2025-01-21T22:15:12.137Z","references":[{"type":"ADVISORY","url":"https://cwiki.apache.org/confluence/display/RANGER/Vulnerabilities+found+in+Ranger"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2025/01/21/3"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/apache/ranger","events":[{"introduced":"50ad9c19e62f5aa6b2888b17437aa6fb1e2c0a36"},{"fixed":"f3e2a44f0d7f80be4eed95b456f5066089a88891"}],"database_specific":{"versions":[{"introduced":"2.4.0"},{"fixed":"2.5.0"}]}}],"versions":["release-2.4.0-rc2","release-2.5.0-rc0","release-2.5.0-rc1","release-2.5.0-rc2","release-2.5.0-rc3","release-ranger-2.4.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-45478.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N"}]}