Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache hadoop 2.2.0 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-33036
In Apache Hadoop 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1, a user who can escalate to yarn user can possibly run arbitrary commands as root user. Users should upgrade to Apache Hadoop 2.10.2, 3.2.3, 3.3.2 or higher.
Apache Hadoop 3.0.0
Apache Hadoop
8.8
CVSSv3
CVE-2018-8029
In Apache Hadoop versions 3.0.0-alpha1 to 3.1.0, 2.9.0 to 2.9.1, and 2.2.0 to 2.8.4, a user who can escalate to yarn user can possibly run arbitrary commands as root user.
Apache Hadoop 3.0.0
Apache Hadoop 2.9.0
Apache Hadoop
Apache Hadoop 2.9.1
6.5
CVSSv3
CVE-2014-0229
Apache Hadoop 0.23.x prior to 0.23.11 and 2.x prior to 2.4.1, as used in Cloudera CDH 5.0.x prior to 5.0.2, do not check authorization for the (1) refreshNamenodes, (2) deleteBlockPool, and (3) shutdownDatanode HDFS admin commands, which allows remote authenticated users to cause...
Cloudera Cdh 5.0.0
Apache Hadoop 2.0.4
Apache Hadoop 0.23.9
Apache Hadoop 0.23.3
Apache Hadoop 2.0.3
Apache Hadoop 2.0.6
Apache Hadoop 2.1.0
Apache Hadoop 2.0.5
Apache Hadoop 2.2.0
Apache Hadoop 0.23.6
Apache Hadoop 2.1.1
Apache Hadoop 2.0.0
Apache Hadoop 0.23.0
Apache Hadoop 0.23.4
Apache Hadoop 2.4.0
Apache Hadoop 0.23.5
Apache Hadoop 0.23.10
Apache Hadoop 2.0.2
Apache Hadoop 0.23.8
Apache Hadoop 2.3.0
Apache Hadoop 0.23.7
Apache Hadoop 0.23.1
NA
CVE-2014-3627
The YARN NodeManager daemon in Apache Hadoop 0.23.0 up to and including 0.23.11 and 2.x prior to 2.5.2, when using Kerberos authentication, allows remote cluster users to change the permissions of certain files to world-readable via a symlink attack in a public tar archive, which...
Apache Hadoop 2.0.4
Apache Hadoop 0.23.9
Apache Hadoop 0.23.3
Apache Hadoop 2.0.3
Apache Hadoop 2.0.6
Apache Hadoop 2.1.0
Apache Hadoop 2.5.1
Apache Hadoop 2.0.5
Apache Hadoop 2.2.0
Apache Hadoop 0.23.6
Apache Hadoop 2.5.0
Apache Hadoop 2.1.1
Apache Hadoop 2.0.0
Apache Hadoop 0.23.0
Apache Hadoop 0.23.4
Apache Hadoop 2.4.0
Apache Hadoop 0.23.5
Apache Hadoop 2.4.1
Apache Hadoop 0.23.10
Apache Hadoop 2.0.2
Apache Hadoop 0.23.8
Apache Hadoop 2.3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started