{"schema_version": "1.6.1", "id": "CVE-2023-34340", "summary": "Accumulo 2.1.0 may incorrectly validate cached credentials", "details": "Improper Authentication vulnerability in Apache Software Foundation Apache Accumulo.\nThis issue affects Apache Accumulo: 2.1.0.\n\nAccumulo 2.1.0 contains a defect in the user authentication process that may succeed when invalid credentials are provided. Users are advised to upgrade to 2.1.1.\n\n\n", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "2.1.0"}, {"fixed": "2.1.1"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/syy6jftvy9l6tlhn33o0rzwhh4rd0z4t"}, {"type": "WEB", "url": "https://accumulo.apache.org/release/accumulo-2.1.1/"}]}