7 matches found
CVE-2025-3884
Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2025-3884
Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2025-3884
CVE-2025-3884 concerns Cloudera Hue’s Ace Editor, where a directory-traversal flaw arises from inadequate validation of a user-supplied path before file operations. The issue could allow remote, unauthenticated attackers to disclose sensitive information within the service account context on affe...
CVE-2025-3884 Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability
Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
Cloudera Hue 路径遍历漏洞
Cloudera Hue is a web-based, open source interactive query editor for visualizing and sharing data from Cloudera, Inc. A path traversal vulnerability exists in Cloudera Hue that stems from Ace Editor not properly validating user-supplied paths, which could lead to information disclosure...
The vulnerability of the Ace Editor web interactive query editor in Hue allows a hacker to read arbitrary files.
The vulnerability of the Ace Editor web interactive query editor in Hue is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to read arbitrary files by sending specially crafted HTTP requests...
(0Day) Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Ace Editor web application. The issue results from the lack of proper validatio...