Lucene search
GoogleOSV:CVE-2017-5654HistoryMay 12, 2017 - 9:29 p.m.
CVE-2017-5654
2017-05-1221:29:00
Google
osv.dev
2
In Ambari 2.4.x (before 2.4.3) and Ambari 2.5.0, an authorized user of the Ambari Hive View may be able to gain unauthorized read access to files on the host where the Ambari server executes.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ambari | eq | release-2.4.1 | |
| ambari | eq | release-2.4.1-rc1 | |
| ambari | eq | release-2.4.1-rc0 | |
| ambari | eq | release-2.4.0 | |
| ambari | eq | release-2.4.0-rc0 |
Related
openvas
openvas
Apache Ambari 2.4.0 - 2.4.2, 2.5.0 XML Injection Vulnerability
2017-05-15 00:00:00
cvelist
cvelist
CVE-2017-5654
2017-05-12 21:00:00
prion
prion
Code injection
2017-05-12 21:29:00
cve
cve
CVE-2017-5654
2017-05-12 21:29:00
nvd
nvd
CVE-2017-5654
2017-05-12 21:29:00