Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/07/29 1:15 p.m.3 views

CVE-2025-6504

In HDP Server versions below 4.6.2.2978 on Linux, unauthorized access could occur via IP spoofing using the X-Forwarded-For header. Since XFF is a client-controlled header, it could be spoofed, allowing unauthorized access if the spoofed IP matched a whitelisted range. This vulnerability could be...

8.4CVSS5.8AI score0.00066EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2024/10/09 12:0 a.m.1 views

The vulnerability of the RunJar.run() function on the distributed development and execution platform for Apache Hadoop allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the RunJar.run function on the distributed development and execution platform for Apache Hadoop is related to insecure privilege management. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

3.3CVSS5.7AI score0.00104EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTECadded 2022/05/11 12:0 a.m.2 views

The vulnerability in the implementation of the unTar() function for the distributed development and execution platform of Apache Hadoop allows a hacker to write arbitrary files.

The vulnerability of the unTar function implementation in the distributed development and execution platform for Apache Hadoop is related to deficiencies in checking the path name of the restricted-access directory. Exploiting this vulnerability could allow an attacker to write arbitrary files...

10CVSS8AI score0.0022EPSS
Exploits1References7Affected Software1
CNNVD
CNNVDadded 2021/03/16 12:0 a.m.4 views

Apache Hive 信息泄露漏洞

Apache Hive is a suite of data warehouse software based on Hadoop Distributed Systems Infrastructure from the Apache Apache Foundation in the United States. The software provides a data integration approach and a high-level query language to support large-scale data analysis on Hadoop. An...

5.9CVSS5.7AI score0.00478EPSS
Exploits0References3
CNVD
CNVDadded 2019/12/03 12:0 a.m.2 views

Unspecified vulnerability in Cloudera CDH (CNVD-2020-14226)

Cloudera CDH is an open source Hadoop platform from Cloudera. The platform provides scalable storage and distributed computing, as well as a Web-based user interface and other enterprise features. A security vulnerability exists in Cloudera CDH versions prior to 5.7.1 that stems from the inabilit...

8.8CVSS7AI score0.00328EPSS
Exploits0References1
CNVD
CNVDadded 2017/03/30 12:0 a.m.2 views

Cloudera Navigator Security Bypass Vulnerability

Cloudera Navigator is a suite of data management tools for Hadoop platform integration from Cloudera, USA. The tool provides features such as auditing data access and validating access rights, searching metadata, and visualization. A security bypass vulnerability exists in Cloudera Navigator. An...

3.5CVSS6.7AI score0.00236EPSS
Exploits5References1
Rows per page
Query Builder