Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ApacheAmbari*

3 matches found

CVE
CVEadded 2024/02/27 5:15 p.m.7660 views

CVE-2023-50380

XML External Entity injection in apache ambari versions

6.5CVSS7.2AI score0.00102EPSS
CVE
CVEadded 2024/02/27 9:15 a.m.3974 views

CVE-2023-50379

Malicious code injection in Apache Ambari in prior to 2.7.8. Users are recommended to upgrade to version 2.7.8, which fixes this issue. Impact:A Cluster Operator can manipulate the request by adding a malicious code injection and gain a root over the cluster main host.

8.8CVSS9AI score0.00669EPSS
CVE
CVEadded 2024/03/01 3:15 p.m.66 views

CVE-2023-50378

Lack of proper input validation and constraint enforcement in Apache Ambari prior to 2.7.8 Impact : As it will be stored XSS, Could be exploited to perform unauthorized actions, varying from data access to session hijacking and delivering malicious payloads. Users are recommended to upgrade to vers...

6.1CVSS6.2AI score0.0114EPSS