Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloudera vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-10815
An issue exists in Cloudera Manager prior to 5.13.4, 5.14.x prior to 5.14.4, and 5.15.x prior to 5.15.1. A read-only user can access sensitive cluster information.
Cloudera Cloudera Manager
6.1
CVSSv3
CVE-2021-32482
Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS via the path parameter.
Cloudera Cloudera Manager
5.4
CVSSv3
CVE-2015-4457
Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI prior to 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.
Cloudera Cloudera Manager
6.5
CVSSv3
CVE-2016-3192
Cloudera Manager 5.x prior to 5.7.1 places Sensitive Data in cleartext Readable Files.
Cloudera Cloudera Manager
7.5
CVSSv3
CVE-2017-9326
The keystore password for the Spark History Server may be exposed in unsecured files under the /var/run/cloudera-scm-agent directory managed by Cloudera Manager. The keystore file itself is not exposed.
Cloudera Cloudera Manager 5.11.0
9.8
CVSSv3
CVE-2021-30132
Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.
Cloudera Cloudera Manager 7.2.4
5.3
CVSSv3
CVE-2021-32483
Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges to view the restricted Dashboard.
Cloudera Cloudera Manager 7.2.4
6.5
CVSSv3
CVE-2016-3131
Cloudera CDH prior to 5.6.1 allows authorization bypass via direct internal API calls.
Cloudera Cdh
Cloudera Cdh 5.6.0
NA
CVE-2012-1574
The Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 up to and including 0.20.205.0, 0.23.x prior to 0.23.2, and 1.0.x prior to 1.0.2, as used in Cloudera CDH CDH3u0 through CDH3u2, Cloudera hadoop-0.20-sbin prior to 0.20.2+923.197, and other products, allows...
Apache Hadoop 0.20.203.0
Apache Hadoop 0.20.204.0
Apache Hadoop 0.20.205.0
Apache Hadoop 0.23.1
Apache Hadoop 1.0.0
Apache Hadoop 0.23.0
Apache Hadoop 1.0.1
Cloudera Hadoop 0.20.1\\+169
Cloudera Hadoop 0.20.2\\+923
Cloudera Cloudera Cdh Cdh3
Cloudera Hadoop 0.20-sbin
8.8
CVSSv3
CVE-2015-7831
In Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is used.
Cloudera Cdh
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »