CVE-2021-32481

2021-11-0813:15:07

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.3%

JSON

Cloudera Hue 4.6.0 allows XSS via the type parameter.

CPENameOperatorVersion
hueeqcdh5-base-3.10.0
hueeqrelease-0.9.1
hueeqcdh4-base-2.5.0
hueeqrelease-3.12.0
hueeqrelease-3.6.0
hueeqrelease-3.5.0
hueeqcdh5-base-3.6.0
hueeqcdh5-base-3.9.0
hueeqrelease-4.5.0
hueeqrelease-4.0.0

Name	Operator	Version
hue	eq	cdh5-base-3.10.0
hue	eq	release-0.9.1
hue	eq	cdh4-base-2.5.0
hue	eq	release-3.12.0
hue	eq	release-3.6.0
hue	eq	release-3.5.0
hue	eq	cdh5-base-3.6.0
hue	eq	cdh5-base-3.9.0
hue	eq	release-4.5.0
hue	eq	release-4.0.0