Software
IBM Big SQLIBM Big SQL could allow an authenticated user with appropriate permissions to obtain sensitive infor…
Cloudera Cloudera ManagerCloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges to view the r…
Cloudera Cloudera ManagerCloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera Data EngineeringIn Cloudera Data Engineering (CDE) 1.3.0, JWT authentication tokens are exposed to administrators in…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera CDHAn issue was discovered in Cloudera Hue 6.0.0 through 6.1.0. When using one of following authenticat…
Cloudera Data Science WorkbenchAn issue was discovered in Cloudera Data Science Workbench (CDSW) 1.4.0 through 1.4.2. Authenticated…
Cloudera CDHCloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15.1 …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera CDHIn Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is use…
Cloudera CDHCloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls.
Cloudera Cloudera ManagerCloudera Manager 5.x before 5.7.1 places Sensitive Data in cleartext Readable Files.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera CDHIn Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges.
Cloudera CDHCloudera Search in CDH before 5.7.0 allows unauthorized document access because Solr Queries by docu…
Cloudera Cloudera ManagerCloudera Manager through 5.15 has Incorrect Access Control.
Cloudera CDHThe provided secure solrconfig.xml sample configuration does not enforce Sentry authorization on /up…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera Cloudera ManagerThe keystore password for the Spark History Server may be exposed in unsecured files under the /var/…
Cloudera Cloudera ManagerSecret data of processes managed by CM is not secured by file permissions.
Cloudera Data Science WorkbenchInfoleak, OS Command Injection
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera Cloudera ManagerIn Cloudera Navigator Key Trustee KMS 5.12 and 5.13, incorrect default ACL values allow remote acces…
Cloudera HueOpen redirect vulnerability in Cloudera HUE before 3.10.0 allows remote attackers to redirect users …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera Data Science WorkbenchAn issue was discovered in Cloudera Data Science Workbench (CDSW) 1.x before 1.2.0. Several web appl…
Cloudera CDHImpala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization.
Cloudera CDHThe JobHistory Server in Cloudera CDH 4.x before 4.6.0 and 5.x before 5.0.0 Beta 2, when using MRv2/…
Cloudera Key Trustee ServerCloudera Key Trustee Server before 5.4.3 does not store keys synchronously, which might allow attack…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudera Cloudera ManagerCloudera Manager 4.x, 5.0.x before 5.0.6, 5.1.x before 5.1.5, 5.2.x before 5.2.5, and 5.3.x before 5…
Apache HadoopApache Hadoop 0.23.x before 0.23.11 and 2.x before 2.4.1, as used in Cloudera CDH 5.0.x before 5.0.2…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache HadoopThe Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 through 0.20.205.0, 0.23.x…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.