Filter

Cloudera Data Science WorkbenchSQL Injection

First published (updated )

Cloudera Data Science WorkbenchInfoleak, OS Command Injection

First published (updated )

Cloudera Key Trustee ServerCloudera Key Trustee Server before 5.4.3 does not store keys synchronously, which might allow attack…

First published (updated )

Cloudera Cloudera ManagerCloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.

First published (updated )

Cloudera Data EngineeringCSRF

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudera CDHIn Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is use…

8.8
First published (updated )

Cloudera Cloudera ManagerCVE-2017-7399

8.8
First published (updated )

Cloudera CDHIn Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges.

8.8
First published (updated )

Cloudera Data Science WorkbenchAn issue was discovered in Cloudera Data Science Workbench (CDSW) 1.x before 1.2.0. Several web appl…

8.8
First published (updated )

Cloudera Data Science WorkbenchAn issue was discovered in Cloudera Data Science Workbench (CDSW) 1.4.0 through 1.4.2. Authenticated…

8.3
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudera CDHAn issue was discovered in Cloudera Hue 6.0.0 through 6.1.0. When using one of following authenticat…

8.3
First published (updated )

Cloudera Cloudera ManagerCloudera Manager through 5.15 has Incorrect Access Control.

8.1
First published (updated )

Cloudera CDHThe provided secure solrconfig.xml sample configuration does not enforce Sentry authorization on /up…

7.5
First published (updated )

Cloudera Cloudera ManagerThe keystore password for the Spark History Server may be exposed in unsecured files under the /var/…

7.5
First published (updated )

Cloudera CDHImpala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudera ManagerInfoleak

7.5
First published (updated )

Cloudera ManagerInfoleak

7.5
First published (updated )

Cloudera CDHInfoleak

7.5
First published (updated )

Cloudera Cloudera ManagerInfoleak

7.5
First published (updated )

Cloudera CDHCloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15.1 …

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudera Cloudera ManagerCloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not …

First published (updated )

Cloudera Cloudera ManagerSecret data of processes managed by CM is not secured by file permissions.

First published (updated )

Apache HadoopApache Hadoop 0.23.x before 0.23.11 and 2.x before 2.4.1, as used in Cloudera CDH 5.0.x before 5.0.2…

First published (updated )

Cloudera CDHCloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls.

First published (updated )

Cloudera Cloudera ManagerCloudera Manager 5.x before 5.7.1 places Sensitive Data in cleartext Readable Files.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudera CDHCloudera Search in CDH before 5.7.0 allows unauthorized document access because Solr Queries by docu…

First published (updated )

Cloudera Data EngineeringIn Cloudera Data Engineering (CDE) 1.3.0, JWT authentication tokens are exposed to administrators in…

First published (updated )

Cloudera Cloudera ManagerInfoleak

First published (updated )

IBM Big SQLIBM Big SQL could allow an authenticated user with appropriate permissions to obtain sensitive infor…

First published (updated )

Apache HadoopThe Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 through 0.20.205.0, 0.23.x…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203