Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache hadoop 2.0.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-4449
Apache Hadoop prior to 0.23.4, 1.x prior to 1.0.4, and 2.x prior to 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-dependent malicious users to crack secret keys via a brute-force attack.
Apache Hadoop 1.0.3
Apache Hadoop 1.0.0
Apache Hadoop 2.0.0
Apache Hadoop 1.0.2
Apache Hadoop 1.0.1
Apache Hadoop 2.0.2
Apache Hadoop 2.0.1
Apache Hadoop
5
CVSSv2
CVE-2018-11768
In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.
Apache Hadoop 2.0.4
Apache Hadoop 2.0.3
Apache Hadoop 2.0.6
Apache Hadoop 2.1.0
Apache Hadoop 2.0.5
Apache Hadoop 2.1.1
Apache Hadoop 2.0.0
Apache Hadoop 3.0.0
Apache Hadoop 2.0.2
Apache Hadoop 2.0.1
Apache Hadoop
4
CVSSv2
CVE-2017-15713
Vulnerability in Apache Hadoop 0.23.x, 2.x prior to 2.7.5, 2.8.x prior to 2.8.3, and 3.0.0-alpha up to and including 3.0.0-beta1 allows a cluster user to expose private files owned by the user running the MapReduce job history server process. The malicious user can construct a co...
Apache Hadoop 2.0.4
Apache Hadoop 2.0.3
Apache Hadoop 2.0.6
Apache Hadoop 2.1.0
Apache Hadoop 2.0.5
Apache Hadoop 2.1.1
Apache Hadoop 2.0.0
Apache Hadoop 3.0.0
Apache Hadoop 2.0.2
Apache Hadoop 2.0.1
Apache Hadoop
4
CVSSv2
CVE-2014-0229
Apache Hadoop 0.23.x prior to 0.23.11 and 2.x prior to 2.4.1, as used in Cloudera CDH 5.0.x prior to 5.0.2, do not check authorization for the (1) refreshNamenodes, (2) deleteBlockPool, and (3) shutdownDatanode HDFS admin commands, which allows remote authenticated users to cause...
Cloudera Cdh 5.0.0
Apache Hadoop 2.0.4
Apache Hadoop 2.0.6
Apache Hadoop 2.1.1
Apache Hadoop 0.23.1
Apache Hadoop 0.23.3
Apache Hadoop 2.0.0
Apache Hadoop 2.0.1
Apache Hadoop 2.0.2
Apache Hadoop 2.0.3
Apache Hadoop 0.23.5
Apache Hadoop 0.23.6
Apache Hadoop 0.23.7
Apache Hadoop 0.23.8
Apache Hadoop 2.2.0
Apache Hadoop 2.3.0
Apache Hadoop 2.4.0
Apache Hadoop 0.23.0
Apache Hadoop 2.0.5
Apache Hadoop 2.1.0
Apache Hadoop 0.23.10
Apache Hadoop 0.23.4
5
CVSSv2
CVE-2014-3627
The YARN NodeManager daemon in Apache Hadoop 0.23.0 up to and including 0.23.11 and 2.x prior to 2.5.2, when using Kerberos authentication, allows remote cluster users to change the permissions of certain files to world-readable via a symlink attack in a public tar archive, which...
Apache Hadoop 2.0.4
Apache Hadoop 0.23.9
Apache Hadoop 0.23.3
Apache Hadoop 2.0.3
Apache Hadoop 2.0.6
Apache Hadoop 2.1.0
Apache Hadoop 2.5.1
Apache Hadoop 2.0.5
Apache Hadoop 2.2.0
Apache Hadoop 0.23.6
Apache Hadoop 2.5.0
Apache Hadoop 2.1.1
Apache Hadoop 2.0.0
Apache Hadoop 0.23.0
Apache Hadoop 0.23.4
Apache Hadoop 2.4.0
Apache Hadoop 0.23.5
Apache Hadoop 2.4.1
Apache Hadoop 0.23.10
Apache Hadoop 2.0.2
Apache Hadoop 0.23.8
Apache Hadoop 2.3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started