CVE-2016-0760 (sentry)

CVE-2016-0760 (sentry)

Multiple incomplete blacklist vulnerabilities in Apache Sentry before 1.7.0 allow remote authenticated users to execute arbitrary code via the (1) reflect, (2) reflect2, or (3) java_method Hive builtin functions.

Source: CVE-2016-0760 (sentry)