Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache ambari 2.0.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-3186
Cross-site scripting (XSS) vulnerability in Apache Ambari prior to 2.1.0 allows remote authenticated cluster operator users to inject arbitrary web script or HTML via the note field in a configuration change.
Apache Ambari 2.0.0
Apache Ambari
Apache Ambari 1.7.0
Apache Ambari 2.0.1
NA
CVE-2015-5210
Open redirect vulnerability in Apache Ambari prior to 2.1.2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.
Apache Ambari 2.0.0
Apache Ambari 1.7.0
Apache Ambari 2.0.1
Apache Ambari
Apache Ambari 2.0.2
Apache Ambari 2.1.0
NA
CVE-2015-3270
Apache Ambari prior to 2.0.2 or 2.1.x prior to 2.1.1 allows remote authenticated users to gain administrative privileges via unspecified vectors, possibly related to changing passwords.
Apache Ambari 2.0.0
Apache Ambari 1.7.0
Apache Ambari 2.0.1
Apache Ambari 2.1.0
NA
CVE-2015-1775
Server-side request forgery (SSRF) vulnerability in the proxy endpoint (api/v1/proxy) in Apache Ambari prior to 2.1.0 allows remote authenticated users to conduct port scans and access unsecured services via a crafted REST call.
Apache Ambari 2.0.0
Apache Ambari 1.5.1
Apache Ambari 1.6.1
Apache Ambari 1.7.0
Apache Ambari 2.0.1
Apache Ambari 2.0.2
Apache Ambari 1.5.0
Apache Ambari 1.6.0
5.5
CVSSv3
CVE-2016-4976
Apache Ambari 2.x prior to 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing.
Apache Ambari 2.2.1
Apache Ambari 2.1.2
Apache Ambari 2.0.0
Apache Ambari 2.1.1
Apache Ambari 2.2.2
Apache Ambari 2.2.0
Apache Ambari 2.0.1
Apache Ambari 2.0.2
Apache Ambari 2.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started