Cloudera » Cloudera Manager : Security Vulnerabilities, CVEs, CVSS score >= 7

CVE-2021-30132

Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.
Max CVSS
9.8
EPSS Score
0.22%
Published
2021-11-08
Updated
2022-07-12

CVE-2018-11744

Cloudera Manager through 5.15 has Incorrect Access Control.
Max CVSS
8.1
EPSS Score
0.29%
Published
2019-07-11
Updated
2019-07-18

CVE-2017-9326

The keystore password for the Spark History Server may be exposed in unsecured files under the /var/run/cloudera-scm-agent directory managed by Cloudera Manager. The keystore file itself is not exposed.
Max CVSS
7.5
EPSS Score
0.10%
Published
2019-07-03
Updated
2019-07-11

CVE-2017-7399

Cloudera Manager 5.8.x before 5.8.5, 5.9.x before 5.9.2, and 5.10.x before 5.10.1 allows a read-only Cloudera Manager user to discover the usernames of other users and elevate the privileges of those users.
Max CVSS
8.8
EPSS Score
0.10%
Published
2019-11-26
Updated
2019-12-04

CVE-2015-6495

There is Sensitive Information in Cloudera Manager before 5.4.6 Diagnostic Support Bundles.
Max CVSS
7.5
EPSS Score
0.17%
Published
2019-11-26
Updated
2019-12-03
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close