Lucene search
PRIOn knowledge basePRION:CVE-2013-2192HistoryJan 24, 2014 - 6:55 p.m.
Authentication flaw
2014-01-2418:55:00
PRIOn knowledge base
www.prio-n.com
2
The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information by forcing a downgrade to simple authentication.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hadoop | eq | 2.0.4 alpha | |
| hadoop | eq | 0.23.3 | |
| hadoop | eq | 2.0.3 alpha | |
| hadoop | eq | 1.1.0 | |
| hadoop | eq | 1.2.0 | |
| hadoop | eq | 2.0.5 alpha | |
| hadoop | eq | 1.0.3 | |
| hadoop | eq | 0.23.6 | |
| hadoop | eq | 1.0.0 | |
| hadoop | eq | 2.0.0 alpha |
Related
github
github
Improper Authentication in Apache Hadoop
2022-05-17 02:54:07
cve
cve
CVE-2013-2192
2014-01-24 18:55:04
cvelist
cvelist
CVE-2013-2192
2014-01-24 18:00:00
nvd
nvd
CVE-2013-2192
2014-01-24 18:55:04
osv
osv
Improper Authentication in Apache Hadoop
2022-05-17 02:54:07
nessus
nessus
RHEL 6 : jasperreports-server-pro (RHSA-2014:0037)
2014-11-08 00:00:00
redhat
redhat
(RHSA-2014:0037) Moderate: jasperreports-server-pro security, bug fix, and enhancement update
2014-01-21 00:00:00
(RHSA-2014:0401) Moderate: Red Hat JBoss A-MQ 6.1.0 update
2014-04-14 13:36:41
(RHSA-2014:0400) Moderate: Red Hat JBoss Fuse 6.1.0 update
2014-04-14 00:00:00