CVE-2015-4457

2019-11-2614:02:22

mitre

www.cve.org

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

29.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI before 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.

References

docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#concept_c1c_zbn_js