13 matches found
EUVD-2018-19715
Malware in sbrugna...
EUVD-2018-19725
Malware in sbrugna...
EUVD-2023-40801
Malicious code in bioql PyPI...
CVE-2025-23195 Apache Ambari: XML External Entity (XXE) Vulnerability in Ambari/Oozie
An XML External Entity XXE vulnerability exists in the Ambari/Oozie project, allowing an attacker to inject malicious XML entities. This vulnerability occurs due to insecure parsing of XML input using the DocumentBuilderFactory class without disabling external entity resolution. An attacker can...
PT-2024-2027 · Apache · Apache Ambari
Name of the Vulnerable Software and Affected Versions: Apache Ambari versions prior to 2.7.8 Description: The issue is related to a lack of proper input validation and constraint enforcement, which could be exploited to perform unauthorized actions, including data access, session hijacking, and...
Apache Ambari 安全漏洞
Apache Ambari is an application from the Apache USA Foundation. It provides software developed to configure, manage and monitor Apache Hadoop clusters to simplify Hadoop management. A security vulnerability exists in Apache Ambari versions 2.7.0 through 2.7.6, which originates from a SpringEL...
The vulnerability of the Apache Ambari software lies in the lack of measures taken to protect the structure of web pages, allowing attackers to compromise the confidentiality and integrity of the protected information.
The vulnerability of the Apache Ambari software exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of the protected information...
Apache Ambari Arbitrary File Download Vulnerability
Apache Ambari is a web-based tool that supports provisioning, management and monitoring of Apache Hadoop clusters. An arbitrary file download vulnerability exists in Apache Ambari 2.6.2.2 and earlier versions. An attacker can exploit this vulnerability by constructing filenames to traverse other...
Apache Ambari 路径遍历漏洞
Apache Ambari is a web-based tool that supports provisioning, management and monitoring of Apache Hadoop clusters. An arbitrary file download vulnerability exists in Apache Ambari 2.6.2.2 and earlier versions. An attacker can exploit this vulnerability by constructing filenames to traverse other...
Apache Ambari XML Injection Vulnerability
Apache Ambari is a set of tools for configuring, managing and monitoring Apache Hadoop clusters from the Apache Apache Software Foundation, USA. The tool supports visualization and analysis of job and task execution, support for system alerts, and more. An XML injection vulnerability exists in...
Apache Ambari Server artifacts design flaw vulnerability
Apache Ambari is a set of tools for configuring, managing and monitoring Apache Hadoop clusters from the Apache Apache Software Foundation, USA. The tool supports visualization and analysis of job and task execution, support for system alerts, and more. A security vulnerability exists in Apache...
Apache Ambari Unauthorized Access Vulnerability
Apache Ambari is a set of tools for configuring, managing and monitoring Apache Hadoop clusters from the Apache Apache Software Foundation, USA. The tool supports visualization and analysis of job and task execution, support for system alerts, and more. A security vulnerability exists in Apache...
IBM InfoSphere BigInsights Uses Apache Ambari Information Disclosure Vulnerability
IBM InfoSphere BigInsights is a suite of software platforms for storing and analyzing "Big Data" from IBM, USA. The platform provides solutions for managing and analyzing massive amounts of structured and unstructured data.Apache Ambari is a set of tools for configuring, managing, and monitoring...