Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

data science workbench vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv2
CVE-2018-20090
An issue exists in Cloudera Data Science Workbench (CDSW) 1.4.0 up to and including 1.4.2. Authenticated users can bypass project permission checks and gain read-write access to any project folder.
Cloudera Data Science Workbench
5
CVSSv2
CVE-2018-15665
An issue exists in Cloudera Data Science Workbench (CDSW) 1.2.x up to and including 1.4.0. Unauthenticated users can get a list of user accounts.
Cloudera Data Science Workbench
6.5
CVSSv2
CVE-2017-15536
An issue exists in Cloudera Data Science Workbench (CDSW) 1.x prior to 1.2.0. Several web application vulnerabilities allow malicious authenticated users of CDSW to escalate privileges in CDSW. CDSW users can exploit these vulnerabilities in combination to gain root access to CDS...
Cloudera Data Science Workbench
7.5
CVSSv2
CVE-2018-11215
Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors.
Cloudera Data Science Workbench
6.5
CVSSv2
CVE-2018-20091
An SQL injection vulnerability was found in Cloudera Data Science Workbench (CDSW) 1.4.0 up to and including 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CD...
Cloudera Data Science Workbench
NA
CVE-2022-30575
The Web Console component of TIBCO Software Inc.'s TIBCO Data Science - Workbench, TIBCO Statistica, TIBCO Statistica - Estore Edition, and TIBCO Statistica Trial contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged att...
Tibco StatisticaTibco Data Science - Workbench
NA
CVE-2022-30576
The Web Console component of TIBCO Software Inc.'s TIBCO Data Science - Workbench, TIBCO Statistica, TIBCO Statistica - Estore Edition, and TIBCO Statistica Trial contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execut...
Tibco StatisticaTibco Data Science - Workbench
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook