CVE-2015-4457: XSS
First published: Tue Nov 26 2019(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI before 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cloudera Cloudera Manager | <5.4.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2015-4457.
What is the severity level of CVE-2015-4457?
The severity level of CVE-2015-4457 is medium (5.4).
What is the description of CVE-2015-4457?
CVE-2015-4457 is a vulnerability that allows remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.
How does CVE-2015-4457 impact Cloudera Manager UI?
CVE-2015-4457 affects the Cloudera Manager UI before version 5.4.3, allowing for multiple cross-site scripting (XSS) vulnerabilities.
Is there a fix available for CVE-2015-4457?
Yes, a fix for CVE-2015-4457 is available in Cloudera Manager version 5.4.3.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cloudera
- canonical/cloudera cloudera manager