Hadoop@2.6.0 Security Vulnerabilities and Issues — Hadoop@2.6.0 CVE List

Lucene search

ApacheHadoop2.6.0

3 matches found

CVE•added 2017/09/05 1:29 p.m.•77 views

CVE-2016-3086

The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications.

9.8CVSS9.3AI score0.00428EPSS

CVE•added 2016/04/19 9:59 p.m.•58 views

CVE-2015-1776

Apache Hadoop 2.6.x encrypts intermediate data generated by a MapReduce job and stores it along with the encryption key in a credentials file on disk when the Intermediate data encryption feature is enabled, which allows local users to obtain sensitive information by reading the file.

6.2CVSS5.8AI score0.00065EPSS

CVE•added 2016/11/29 6:59 a.m.•57 views

CVE-2016-5393

In Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3, a remote user who can authenticate with the HDFS NameNode can possibly run arbitrary commands with the same privileges as the HDFS service.

8.8CVSS8.8AI score0.02585EPSS