Published: 10/06/2014 Updated: 09/10/2018

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Subscribe to Cloudera Manager

Cloudera Manager prior to 4.8.3 and 5.x prior to 5.0.1 allows remote authenticated users to obtain sensitive configuration information via the API.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cloudera cloudera manager 5.0.0
cloudera cloudera manager 4.6.0
cloudera cloudera manager 4.5.4
cloudera cloudera manager 4.5.3
cloudera cloudera manager 4.1.1
cloudera cloudera manager 4.1
cloudera cloudera manager
cloudera cloudera manager 4.8.1
cloudera cloudera manager 4.5.2
cloudera cloudera manager 4.5.1
cloudera cloudera manager 4.0.3
cloudera cloudera manager 4.0.2
cloudera cloudera manager 4.7.2
cloudera cloudera manager 4.6.3
cloudera cloudera manager 4.5.0
cloudera cloudera manager 4.1.4
cloudera cloudera manager 4.0.1
cloudera cloudera manager 4.6.2
cloudera cloudera manager 4.6.1
cloudera cloudera manager 4.1.3
cloudera cloudera manager 4.1.2

CWE-200 http://packetstormsecurity.com/files/126956/Cloudera-Manager-4.8.2-5.0.0-Information-Disclosure.html http://www.securityfocus.com/bid/67912 http://www.cloudera.com/content/cloudera-content/cloudera-docs/SecurityBulletins/Security-Bulletin/csb_topic_2.html http://www.securityfocus.com/archive/1/532312/100/0/threaded https://nvd.nist.gov

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook