Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloudera data science workbench vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2018-20091
An SQL injection vulnerability was found in Cloudera Data Science Workbench (CDSW) 1.4.0 up to and including 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CD...
Cloudera Data Science Workbench
9.8
CVSSv3
CVE-2018-11215
Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors.
Cloudera Data Science Workbench
8.8
CVSSv3
CVE-2017-15536
An issue exists in Cloudera Data Science Workbench (CDSW) 1.x prior to 1.2.0. Several web application vulnerabilities allow malicious authenticated users of CDSW to escalate privileges in CDSW. CDSW users can exploit these vulnerabilities in combination to gain root access to CDS...
Cloudera Data Science Workbench
8.3
CVSSv3
CVE-2018-20090
An issue exists in Cloudera Data Science Workbench (CDSW) 1.4.0 up to and including 1.4.2. Authenticated users can bypass project permission checks and gain read-write access to any project folder.
Cloudera Data Science Workbench
5.3
CVSSv3
CVE-2018-15665
An issue exists in Cloudera Data Science Workbench (CDSW) 1.2.x up to and including 1.4.0. Unauthenticated users can get a list of user accounts.
Cloudera Data Science Workbench
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started