Authorization

2019-11-2614:15:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

22.7%

Cloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls.

CPENameOperatorVersion
cdheq5.6.0
cdhge5.5.0
cdhlt5.5.4
cdhge5.4.0
cdhlt5.4.10
cdhge5.0.0
cdhlt5.3.10

Name	Operator	Version
cdh	eq	5.6.0
cdh	ge	5.5.0
cdh	lt	5.5.4
cdh	ge	5.4.0
cdh	lt	5.4.10
cdh	ge	5.0.0
cdh	lt	5.3.10

References

docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html