Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloudera cloudera manager vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-32483
Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges to view the restricted Dashboard.
Cloudera Cloudera Manager 7.2.4
7.5
CVSSv2
CVE-2021-30132
Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.
Cloudera Cloudera Manager 7.2.4
4.3
CVSSv2
CVE-2021-32482
Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS via the path parameter.
Cloudera Cloudera Manager
4.3
CVSSv2
CVE-2021-29243
Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS.
Cloudera Cloudera Manager
3.5
CVSSv2
CVE-2019-14449
An issue exists in Cloudera Manager 5.x prior to 5.16.2, 6.0.x prior to 6.0.2, and 6.1.x prior to 6.1.1. Malicious impala queries can result in Cross Site Scripting (XSS) when viewed within this product.
Cloudera Cloudera Manager
Cloudera Cloudera Manager 6.0.0
Cloudera Cloudera Manager 6.0.1
Cloudera Cloudera Manager 6.1.0
3.5
CVSSv2
CVE-2016-9271
Cloudera Manager 5.7.x prior to 5.7.6, 5.8.x prior to 5.8.4, and 5.9.x prior to 5.9.1 allows XSS in the help search feature.
Cloudera Cloudera Manager
Cloudera Cloudera Manager 5.9.0
6.5
CVSSv2
CVE-2017-7399
Cloudera Manager 5.8.x prior to 5.8.5, 5.9.x prior to 5.9.2, and 5.10.x prior to 5.10.1 allows a read-only Cloudera Manager user to discover the usernames of other users and elevate the privileges of those users.
Cloudera Cloudera Manager
Cloudera Cloudera Manager 5.10.0
3.5
CVSSv2
CVE-2015-4457
Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI prior to 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.
Cloudera Cloudera Manager
4
CVSSv2
CVE-2016-3192
Cloudera Manager 5.x prior to 5.7.1 places Sensitive Data in cleartext Readable Files.
Cloudera Cloudera Manager
5
CVSSv2
CVE-2015-6495
There is Sensitive Information in Cloudera Manager prior to 5.4.6 Diagnostic Support Bundles.
Cloudera Cloudera Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »