CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Summary IBM Operational Decision Manager is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2024-22201...

8.2CVSS9AI score0.16157EPSS

Exploits4Affected Software1

Github Security Blog•added 2022/05/17 2:53 a.m.•23 views

Improper Authentication in Apache Hadoop

Apache Hadoop 0.23.x before 0.23.11 and 2.x before 2.4.1, as used in Cloudera CDH 5.0.x before 5.0.2, do not check authorization for the 1 refreshNamenodes, 2 deleteBlockPool, and 3 shutdownDatanode HDFS admin commands, which allows remote authenticated users to cause a denial of service DataNode...

6.5CVSS6.3AI score0.01591EPSS

Exploits0References3Affected Software1

CNVD•added 2019/12/03 12:0 a.m.•2 views

Unspecified vulnerability in Cloudera CDH (CNVD-2020-14228)

Cloudera CDH is an open source Hadoop platform from Cloudera. The platform provides scalable storage and distributed computing, as well as a Web-based user interface and other enterprise features. A security vulnerability exists in Cloudera CDH versions prior to 5.6.1. An attacker could exploit t...

6.5CVSS6.8AI score0.00667EPSS

Exploits0References1

NVD•added 2019/11/26 3:15 p.m.•15 views

CVE-2018-17860

Cloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15.1 and 6.x through 6.0.1...

7.2CVSS7AI score0.00952EPSS

Exploits0References2

NVD•added 2019/11/26 2:15 p.m.•12 views

CVE-2016-4572

In Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges...

8.8CVSS8.9AI score0.00861EPSS

Exploits0References1

NVD•added 2019/11/26 2:15 p.m.•16 views

CVE-2016-3131

Cloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls...

6.5CVSS6.6AI score0.00667EPSS

Exploits0References1

Prion•added 2019/11/26 2:15 p.m.•16 views

Command injection

In Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges...

6.5CVSS7.4AI score0.00861EPSS

Exploits0References1Affected Software1

Prion•added 2019/11/26 2:15 p.m.•14 views

Information disclosure

Cloudera CDH before 5.9 has Potentially Sensitive Information in Diagnostic Support Bundles...

5CVSS7.1AI score0.01234EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/11/26 1:57 p.m.•19 views

CVE-2016-3131

Cloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls...

6.6AI score0.00667EPSS

Exploits0References1

Cvelist•added 2019/11/26 1:49 p.m.•14 views

CVE-2016-5724

Cloudera CDH before 5.9 has Potentially Sensitive Information in Diagnostic Support Bundles...

7.6AI score0.01234EPSS

Exploits0References1

CNVD•added 2017/03/30 12:0 a.m.•3 views

Cloudera CDH Apache Hadoop Security Bypass Vulnerability

Cloudera CDH is an open source platform for running Apache Hadoop from Cloudera Inc. Apache Hadoop is an open source distributed systems infrastructure that enables distributed processing of large amounts of data with high reliability, high scalability, high fault tolerance and other features. A...

6.5CVSS7.3AI score0.01591EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by