EUVD-2018-3671

Malware in sbrugna...

EUVD-2021-19327

Malware in sbrugna...

EUVD-2015-7987

Malware in sbrugna...

CVE-2021-29994

Cloudera Hue 4.6.0 allows XSS...

CVE-2018-7580

Philips Hue is vulnerable to a Denial of Service attack. Sending a SYN flood on port tcp/80 will freeze Philips Hue's hub and it will stop responding. The "hub" will stop operating and be frozen until the flood stops. During the flood, the user won't be able to turn on/off the lights, and all of...

CVE-2019-7319

An issue was discovered in Cloudera Hue 6.0.0 through 6.1.0. When using one of following authentication backends: LdapBackend, PamBackend, SpnegoDjangoBackend, RemoteUserDjangoBackend, SAML2Backend, OpenIDBackend, or OAuthBackend, external users are created with superuser privileges...

CVE-2015-7831

In Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is used...

(0Day) Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cloudera Hue. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Ace Editor web application. The issue results from the lack of proper validatio...

PT-2020-8980 · Philips · Philips Hue

Name of the Vulnerable Software and Affected Versions: Philips Hue affected versions not specified Description: The issue is related to a Denial of Service attack. Sending a SYN flood on port tcp/80 will freeze Philips Hue's hub, causing it to stop responding. During the flood, the user won't be...

Hue Cross-Site Scripting Vulnerability

Hue is an open source web interface for Apache Hadoop data analysis. A cross-site scripting vulnerability exists in Hue version 3.12. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...