EUVD-2018-0821

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2016-6811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache Hadoop 2.x before 2.7.4, a user who can escalate to yarn user can possibly run arbitrary commands as root user. CVE-2016-6811 Note that Nessus relies ...

RHEL 8 : hadoop (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - hadoop: privilege escalation to root CVE-2016-6811 Note that Nessus has not tested for this issue but has instead...

ae.teletronics.nlp:entityextraction (=1.3), ae.teletronics.nlp:w2vec (=1.0) +4361 more potentially affected by CVE-2016-6811 via org.apache.hadoop:hadoop-common (>=2.0.4-alpha <=2.7.3)

org.apache.hadoop:hadoop-common MAVEN version =2.0.4-alpha, =0.25-rc1, =0.25-rc1, =0.25, =0.25, =0.25, =0.25, =0.0.25, =0.0.25, =0.0.25, =0.0.86, =0.0.1, =0.0.1, =0.42.1, =0.78.8 and more Source cves: CVE-2016-6811 Source advisory: OSV:GHSA-MF7C-35MQ-75PJ...

Arbitrary Command Execution in Hadoop

In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user...

GHSA-RQJ9-CQ6J-958R Arbitrary Command Execution in Hadoop

In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user...

Fedora Update for hadoop FEDORA-2018-f1f44e4c6d

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Privilege Escalation

Apache Hadoop is vulnerable to privilege escalation. It is possible due to the incomplete fix of CVE-2016-6811. An authorised yarn user can possibly run arbitrary commands with root privilege...

Design/Logic Flaw

In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user...

Fedora Update for hadoop FEDORA-2018-e5a8b72d0d

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apache Hadoop 2.7.3 Privilege Escalation Vulnerability

Exploit for multiple platform in category remote exploits CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability Severity: Critical Vendor: The Apache Software Foundation Versions Affected: All the Apache Hadoop versions from 2.2.0 to 2.7.3 Description: A user who can escalate to yarn us...

CVE-2016-6811

CVE-2016-6811 affects Apache Hadoop 2.x prior to 2.7.4, enabling a user who can escalate to the yarn user to execute arbitrary commands with root privileges. Connected sources confirm this as a privileged‑execution issue in Hadoop/YARN, with public discourse noting patch timelines (Fedora/RHEL ad...

CVE-2016-6811

In Apache Hadoop 2.x before 2.7.4, a user who can escalate to yarn user can possibly run arbitrary commands as root user...