CVE-2021-32482: XSS
First published: Mon Nov 08 2021(Updated: )
Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS via the path parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cloudera Cloudera Manager | >=5.0.0<=5.16.2 | |
| Cloudera Cloudera Manager | >=6.0.0<=6.3.4 | |
| Cloudera Cloudera Manager | >=7.1.0<=7.1.4 | |
| Cloudera Cloudera Manager | >=7.2.0<=7.2.4 | |
| Cloudera Cloudera Manager | >=7.3.0<=7.3.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the Cloudera Manager XSS vulnerability?
The vulnerability ID for the Cloudera Manager XSS vulnerability is CVE-2021-32482.
How does Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allow XSS?
Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS via the path parameter.
What is the severity of CVE-2021-32482?
The severity of CVE-2021-32482 is medium with a CVSS score of 6.1.
Which versions of Cloudera Manager are affected by CVE-2021-32482?
Cloudera Manager versions 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x are affected by CVE-2021-32482.
How can I fix the Cloudera Manager XSS vulnerability?
To fix the Cloudera Manager XSS vulnerability, it is recommended to upgrade to a patched version of Cloudera Manager.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/type
- agent/event
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- agent/description
- agent/author
- collector/mitre-cve
- source/MITRE
- vendor/cloudera
- canonical/cloudera cloudera manager
- version/cloudera cloudera manager/5.0.0
- version/cloudera cloudera manager/5.16.2
- version/cloudera cloudera manager/6.0.0
- version/cloudera cloudera manager/6.3.4
- version/cloudera cloudera manager/7.1.0
- version/cloudera cloudera manager/7.1.4
- version/cloudera cloudera manager/7.2.0
- version/cloudera cloudera manager/7.2.4
- version/cloudera cloudera manager/7.3.0
- version/cloudera cloudera manager/7.3.4