Lucene search
GoogleOSV:CVE-2016-6807HistoryMar 28, 2017 - 8:59 p.m.
CVE-2016-6807
2017-03-2820:59:00
Google
osv.dev
5
Custom commands may be executed on Ambari Agent (2.4.x, before 2.4.2) hosts without authorization, leading to unauthorized access to operations that may affect the underlying system. Such operations are invoked by the Ambari Agent process on Ambari Agent hosts, as the user executing the Ambari Agent process.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ambari | eq | release-2.4.1 | |
| ambari | eq | release-2.4.1-rc1 | |
| ambari | eq | release-2.4.1-rc0 | |
| ambari | eq | release-2.4.0 | |
| ambari | eq | release-2.4.0-rc0 |
Related
osv
osv
Apache Ambari Improper Access Control
2022-05-17 02:51:56
openvas
openvas
Apache Ambari 2.4.0 - 2.4.1 Command Execution Vulnerability
2017-03-31 00:00:00
cvelist
cvelist
CVE-2016-6807
2017-03-28 20:00:00
github
github
Apache Ambari Improper Access Control
2022-05-17 02:51:56
nvd
nvd
CVE-2016-6807
2017-03-28 20:59:00
cve
cve
CVE-2016-6807
2017-03-28 20:59:00
prion
prion
Authorization
2017-03-28 20:59:00