Cloudera Manager 安全漏洞

Cloudera Manager is an end-to-end application for managing CDH clusters.An authorization bypass vulnerability exists in Cloudera Manager version 7.2.4. An attacker could exploit this vulnerability to elevate privileges...

Apache Ambari Arbitrary File Download Vulnerability

Apache Ambari is a web-based tool that supports provisioning, management and monitoring of Apache Hadoop clusters. An arbitrary file download vulnerability exists in Apache Ambari 2.6.2.2 and earlier versions. An attacker can exploit this vulnerability by constructing filenames to traverse other...

Apache Ranger Security Bypass Vulnerability

Apache Ranger is the Apache Software Foundation's architecture for implementing comprehensive security measures for Hadoop clusters, which provides centralized security policy management for core enterprise security requirements such as authorization, billing, and data protection.Hive Authorizer ...

Insecure Hadoop Clusters Expose Over 5,000 Terabytes of Data

Until last year, cyber criminals were only targeting computers of individuals and organisations with ransomware and holding them for ransom, but then they started targeting unprotected online databases and servers around the globe for ransom as well. Earlier this year, we saw notorious incidents...

Apache Ranger Security Bypass Vulnerability (CNVD-2017-01460)

Apache Ranger is a set of architectures for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing and data protection. A security bypass vulnerability exists in...

Apache Ranger Local Elevation of Privilege Vulnerability

Apache Ranger is a set of architectures for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing and data protection. Apache Ranger suffers from a local elevation...

Apache Ambari Information Disclosure Vulnerability (CNVD-2016-03363)

Apache Ambari is a set of tools for configuring, managing, and monitoring Apache Hadoop clusters from the Apache USA Software Foundation. An information disclosure vulnerability exists in Apache Ambari versions prior to 2.1.2. It allows local users to obtain sensitive information by reading files...

Apache Ranger Authentication Bypass Vulnerability

Apache Ranger is the Apache Software Foundation's architecture for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing, and data protection. An authentication...

Apache Ranger Access Bypass Vulnerability

Apache Ranger is the Apache Software Foundation's architecture for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing, and data protection. An access bypass...