Ambari Security Vulnerabilities and Issues — Ambari CVE List

Lucene search

ApacheAmbari

2 matches found

CVE•added 2024/02/27 5:15 p.m.•7660 views

CVE-2023-50380

XML External Entity injection in apache ambari versions

6.5CVSS7.2AI score0.00102EPSS

CVE•added 2024/02/27 9:15 a.m.•3974 views

CVE-2023-50379

Malicious code injection in Apache Ambari in prior to 2.7.8. Users are recommended to upgrade to version 2.7.8, which fixes this issue. Impact:A Cluster Operator can manipulate the request by adding a malicious code injection and gain a root over the cluster main host.

8.8CVSS9AI score0.00669EPSS