CVE-2018-10815: Infoleak
First published: Fri May 24 2019(Updated: )
An issue was discovered in Cloudera Manager before 5.13.4, 5.14.x before 5.14.4, and 5.15.x before 5.15.1. A read-only user can access sensitive cluster information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cloudera Cloudera Manager | <5.13.4 | |
| Cloudera Cloudera Manager | >=5.14.0<5.14.4 | |
| Cloudera Cloudera Manager | >=5.15.0<5.15.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-10815.
What is the severity level of CVE-2018-10815?
The severity level of CVE-2018-10815 is medium with a CVSS score of 6.5.
What is the affected software for CVE-2018-10815?
The affected software for CVE-2018-10815 is Cloudera Manager versions before 5.13.4, 5.14.x before 5.14.4, and 5.15.x before 5.15.1.
What can a read-only user do with CVE-2018-10815?
A read-only user can access sensitive cluster information with CVE-2018-10815.
Where can I find more information about CVE-2018-10815?
You can find more information about CVE-2018-10815 on the Cloudera website and their security bulletins page.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cloudera
- canonical/cloudera cloudera manager
- version/cloudera cloudera manager/5.14.0
- version/cloudera cloudera manager/5.15.0