5 matches found
The vulnerability of the RunJar.run() function on the distributed development and execution platform for Apache Hadoop allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the RunJar.run function on the distributed development and execution platform for Apache Hadoop is related to insecure privilege management. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
CVE-2024-23454
Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...
CVE-2024-23454 Apache Hadoop: Temporary File Local Information Disclosure
Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...
CVE-2024-23454 Apache Hadoop: Temporary File Local Information Disclosure
Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...
CVE-2024-23454
CVE-2024-23454 pertains to Apache Hadoop where RunJar.run() may create temporary files without explicitly setting POSIX permissions. The issue arises because on Unix-like systems the system temp directory is shared among local users, so if the program writes data without proper permissions, other...