Severity: low Affected versions:
- Apache Ranger through 2.7.0 Description: Remote Code Execution Vulnerability in NashornScriptEngineCreator is reported in Apache Ranger versions <= 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue. Credit: chengtianyi <[email protected]> (finder) References: https://ranger.apache.org/ https://www.cve.org/CVERecord?id=CVE-2025-59059
