Hadoop Security Vulnerabilities and Issues — Hadoop CVE List

Lucene search

ApacheHadoop

3 matches found

CVE•added 2019/10/15 2:15 p.m.•283 views

CVE-2019-17195

Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.

9.8CVSS9.2AI score0.1232EPSS

CVE•added 2019/10/04 2:15 p.m.•174 views

CVE-2018-11768

In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.

7.5CVSS7.2AI score0.02596EPSS

CVE•added 2019/10/29 7:15 p.m.•61 views

CVE-2012-2945

Hadoop 1.0.3 contains a symlink vulnerability.

7.5CVSS7.5AI score0.01713EPSS