Apache · Apache Ranger · CVE-2022-45048
**Name of the Vulnerable Software and Affected Versions**
Apache Ranger version 2.3.0
**Description**
The issue allows authenticated users with appropriate privileges to create policies having expressions that can exploit a code execution vulnerability.
**Recommendations**
For Apache Ranger version 2.3.0, update to version 2.4.0 to resolve the issue.