Authorization Bypass

hadoop-hdds-common is vulnerable to authorization bypass. The library does not properly perform authorization checks, allowing an authenticated attacker to execute admin block operations...

Authorization Bypass

hadoop-hdds-server-scm is vulnerable to authorization bypass. The library does not properly perform authorization checks, allowing an authenticated attacker to execute admin-related SCM commands...

Information Disclosure

hadoop-hdds-container-service is vulnerable to information disclosure. an attacker can modify ratis replication configuration through the server-to-server RPC endpoint by downloading the raw data from the data node and ozone manager...

Product update: Virtuozzo 7.0 Update 5 Hotfix 1 (7.0.5-631)

The Hotfix 1 for Virtuozzo 7.0 Update 5 provides a new feature as well as stability and usability bug fixes. Vulnerability id: PSBM-70449 Copying small service files stored on MDS could result in cluster unmount. Vulnerability id: PSBM-69911 VNC console in PowerPanel did not work for VMs running ...

Product update: Virtuozzo Automator 7.0 Update 2 (VA MN: 7.0.2-266, VA Agent: 7.0.2-115)

The Update 2 for Virtuozzo Automator 7.0 provides new features and stability and usability bug fixes. Vulnerability id: PVA-36694 No 'Renew backup' button on virtual environment's backups tab. Vulnerability id: PVA-36693 Existing bridges were not used when attaching interfaces to virtual networks...