What is the vulnerability ID for this Cloudera Manager vulnerability?

The vulnerability ID for this Cloudera Manager vulnerability is CVE-2016-9271.

What is the severity of CVE-2016-9271?

The severity of CVE-2016-9271 is medium, with a severity value of 5.4.

What software versions are affected by CVE-2016-9271?

Cloudera Manager versions 5.0.0 to 5.0.7, 5.1.0 to 5.1.6, 5.3.0 to 5.3.10, 5.4.0 to 5.4.3, 5.4.5 to 5.4.10, 5.5.0 to 5.5.6, 5.6.0 to 5.6.1, 5.7.0 to 5.7.5, 5.8.0 to 5.8.3, and 5.9.0 are affected by CVE-2016-9271.

What is the description of CVE-2016-9271?

CVE-2016-9271 is a vulnerability in Cloudera Manager that allows for cross-site scripting (XSS) attacks in the help search feature.

Where can I find more information about CVE-2016-9271?

You can find more information about CVE-2016-9271 in the Cloudera Manager Security Bulletin at https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#tsb_210.

Vulnerability/
CVE-2016-9271

medium

5.4

CWE

26/11/2019

6/8/2024

CVE-2016-9271: XSS

First published: Tue Nov 26 2019(Updated: )

Cloudera Manager 5.7.x before 5.7.6, 5.8.x before 5.8.4, and 5.9.x before 5.9.1 allows XSS in the help search feature.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Cloudera Cloudera Manager	>=5.0.0<=5.0.7
Cloudera Cloudera Manager	>=5.1.0<=5.1.6
Cloudera Cloudera Manager	>=5.3.0<=5.3.10
Cloudera Cloudera Manager	>=5.4.0<=5.4.3
Cloudera Cloudera Manager	>=5.4.5<=5.4.10
Cloudera Cloudera Manager	>=5.5.0<=5.5.6
Cloudera Cloudera Manager	>=5.6.0<=5.6.1
Cloudera Cloudera Manager	>=5.7.0<=5.7.5
Cloudera Cloudera Manager	>=5.8.0<=5.8.3
Cloudera Cloudera Manager	=5.9.0

Never miss a vulnerability like this again

Reference Links

https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#tsb_210

Frequently Asked Questions

What is the vulnerability ID for this Cloudera Manager vulnerability?
The vulnerability ID for this Cloudera Manager vulnerability is CVE-2016-9271.
What is the severity of CVE-2016-9271?
The severity of CVE-2016-9271 is medium, with a severity value of 5.4.
What software versions are affected by CVE-2016-9271?
Cloudera Manager versions 5.0.0 to 5.0.7, 5.1.0 to 5.1.6, 5.3.0 to 5.3.10, 5.4.0 to 5.4.3, 5.4.5 to 5.4.10, 5.5.0 to 5.5.6, 5.6.0 to 5.6.1, 5.7.0 to 5.7.5, 5.8.0 to 5.8.3, and 5.9.0 are affected by CVE-2016-9271.
What is the description of CVE-2016-9271?
CVE-2016-9271 is a vulnerability in Cloudera Manager that allows for cross-site scripting (XSS) attacks in the help search feature.
Where can I find more information about CVE-2016-9271?
You can find more information about CVE-2016-9271 in the Cloudera Manager Security Bulletin at https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#tsb_210.

collector/nvd-index
agent/severity
agent/author
agent/type
agent/event
agent/weakness
agent/references
agent/description
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/cloudera
canonical/cloudera cloudera manager
version/cloudera cloudera manager/5.0.0
version/cloudera cloudera manager/5.0.7
version/cloudera cloudera manager/5.1.0
version/cloudera cloudera manager/5.1.6
version/cloudera cloudera manager/5.2.0
version/cloudera cloudera manager/5.2.7
version/cloudera cloudera manager/5.3.0
version/cloudera cloudera manager/5.3.10
version/cloudera cloudera manager/5.4.0
version/cloudera cloudera manager/5.4.3
version/cloudera cloudera manager/5.4.5
version/cloudera cloudera manager/5.4.10
version/cloudera cloudera manager/5.5.0
version/cloudera cloudera manager/5.5.6
version/cloudera cloudera manager/5.6.0
version/cloudera cloudera manager/5.6.1
version/cloudera cloudera manager/5.7.0
version/cloudera cloudera manager/5.7.5
version/cloudera cloudera manager/5.8.0
version/cloudera cloudera manager/5.8.3
version/cloudera cloudera manager/5.9.0