19 matches found
Apache Hadoop security vulnerabilities
Apache Hadoop is an open-source distributed system framework developed by the Apache Foundation in the United States. This product enables distributed processing of large amounts of data, featuring high reliability, scalability, and fault tolerance. ClickHouse is an open-source implementation of...
EUVD-2019-0447
Malware in sbrugna...
EUVD-2018-0795
Malware in sbrugna...
EUVD-2022-3045
Malicious code in bioql PyPI...
EUVD-2022-5933
Malicious code in bioql PyPI...
EUVD-2022-4816
Malicious code in bioql PyPI...
Apache Hadoop 安全漏洞
Apache Hadoop is a set of open source distributed systems infrastructure from the American Apache Apache Foundation. It is capable of distributed processing of large amounts of data and is characterized by high reliability, high scalability, and high fault tolerance. Apache Hadoop has a security...
The vulnerability of the Apache Hadoop distributed development and execution platform, related to the use of an unreliable search path, allows a attacker to execute commands with root privileges.
The vulnerability of the Apache Hadoop distributed development and execution platform is related to the use of an unreliable search path. Exploiting this vulnerability allows a malicious actor to execute commands with root privileges...
SUSE CVE-2021-33036
In Apache Hadoop 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1, a user who can escalate to yarn user can possibly run arbitrary commands as root user. Users should upgrade to Apache Hadoop 2.10.2, 3.2.3, 3.3.2 or higher...
GHSA-8WM5-8H9C-47PC Apache Hadoop argument injection vulnerability
Apache Hadoop's FileUtil.unTarFile, File API does not escape the input file name before being passed to the shell. An attacker can inject arbitrary commands. This is only used in Hadoop 3.3 InMemoryAliasMap.completeBootstrapTransfer, which is only ever run by a local user. It has been used in...
Apache Hadoop 路径遍历漏洞
Apache Hadoop is an open source distributed systems infrastructure from the Apache Foundation. The product is capable of distributed processing of large amounts of data and is highly reliable, scalable, and fault-tolerant. an elevation of privilege vulnerability exists in Apache Hadoop, which ste...
PT-2022-10193 · Apache · Apache Hadoop
Name of the Vulnerable Software and Affected Versions: Apache Hadoop versions 2.2.0 through 2.10.1 Apache Hadoop versions 3.0.0-alpha1 through 3.1.4 Apache Hadoop versions 3.2.0 through 3.2.2 Apache Hadoop versions 3.3.0 through 3.3.1 Description: A user who can escalate to yarn user can possibly...
ai.catboost:catboost-spark_3.2_2.12 (>=1.0.6 <=1.2.10), ai.catboost:catboost-spark_3.2_2.13 (>=1.0.6 <=1.2.10) +647 more potentially affected by CVE-2022-26612 via org.apache.hadoop:hadoop-common (>=3.3.0 <=3.3.2)
org.apache.hadoop:hadoop-common MAVEN version =3.3.0, =1.0.6, =1.0.6, =1.1, =1.1.1, =0.13.0, =0.2.7, =0.2.7, =0.6.1.2, =1.0.0, =1.0.0, =0.2.2, =1.0.0, =1.0.0, =0.2.2, =0.4.1 and more Source cves: CVE-2022-26612 Source advisory: OSV:GHSA-GX2C-FVHC-PH4J...
Apache Hadoop 后置链接漏洞
Apache Hadoop is an open source distributed systems infrastructure from the Apache Foundation. The product is capable of distributed processing of large amounts of data and is highly reliable, scalable, and fault-tolerant.Apache Hadoop suffers from a security vulnerability that stems from the...
ai.catboost:catboost-spark_3.1_2.12 (>=1.0.1 <=1.2.8), ai.chronon:aggregator_2.12 (>=0.0.25 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +807 more potentially affected by CVE-2020-9492 via org.apache.hadoop:hadoop-common (>=3.2.0 <=3.2.1)
org.apache.hadoop:hadoop-common MAVEN version =3.2.0, =1.0.1, =0.0.25, =0.0.25, =0.0.62, =0.0.25, =0.0.86, =thread-pool-0.0.24-dev, =0.0.6, =0.0.2, =3.34.0.3-1-3.1, =0.0.3, =1.0.0, =1.4.0, =1.4.0, =1.7.0 and more Source cves: CVE-2020-9492 Source advisory: OSV:GHSA-F8VC-WFC8-HXQH...
Apache Hadoop web endpoint privilege escalation vulnerability
Apache Hadoop is a set of open source distributed systems infrastructure of the U.S. Apache Apache Software Foundation. The product is capable of distributed processing of large amounts of data and is characterized by high reliability, high scalability, high fault tolerance and so on. Apache Hado...
Apache Hadoop elevation of privilege vulnerability (CNVD-2018-10426)
Apache Hadoop is the U.S. Apache Apache Software Foundation's set of open source distributed systems infrastructure, it can be distributed processing of large amounts of data, and has high reliability, high scalability, high fault tolerance and other characteristics. Apache Hadoop 2.2.0 to 2.7.3...
Apache Hadoop Elevation of Privilege Vulnerability
Apache Hadoop is the U.S. Apache Apache Software Foundation's set of open source distributed systems infrastructure, it can be distributed processing of large amounts of data, and has high reliability, high scalability, high fault tolerance and other characteristics. A security vulnerability exis...
Apache Hadoop Information Disclosure Vulnerability (CNVD-2017-36014)
Apache Hadoop is the U.S. Apache Apache Software Foundation's set of open source distributed systems infrastructure, it can be distributed processing of large amounts of data, and has high reliability, high scalability, high fault tolerance and other characteristics. A security vulnerability exis...