Lucene search
ApacheCVELIST:CVE-2017-15713HistoryJan 19, 2018 - 12:00 a.m.
CVE-2017-15713
2018-01-1900:00:00
apache
www.cve.org
Vulnerability in Apache Hadoop 0.23.x, 2.x before 2.7.5, 2.8.x before 2.8.3, and 3.0.0-alpha through 3.0.0-beta1 allows a cluster user to expose private files owned by the user running the MapReduce job history server process. The malicious user can construct a configuration file containing XML directives that reference sensitive files on the MapReduce job history server host.
CNA Affected
[
{
"product": "Apache Hadoop",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "0.23.0 to 0.23.11"
},
{
"status": "affected",
"version": "2.0.0-alpha to 2.8.2"
},
{
"status": "affected",
"version": "3.0.0-alpha to 3.0.0-beta1"
}
]
}
]Related
nvd
nvd
CVE-2017-15713
2018-01-19 17:29:00
veracode
veracode
Information Disclosure
2018-01-21 22:47:45
osv
osv
CVE-2017-15713
2018-01-19 17:29:00
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main
2018-12-21 17:50:13
cve
cve
CVE-2017-15713
2018-01-19 17:29:00
zdt
zdt
Apache Hadoop 0.23.x Private File Disclosure Vulnerability
2018-01-23 00:00:00
prion
prion
Design/Logic Flaw
2018-01-19 17:29:00
ibm
ibm
Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to information disclosure due to its use of Apache Hadoop (CVE-2017-15713)
2022-07-21 12:52:29
openvas
openvas
Apache Hadoop Information Disclosure Vulnerability
2018-01-23 00:00:00
Apache Hadoop KMS ACL Regression Vulnerability
2019-06-03 00:00:00
Fedora Update for hadoop FEDORA-2018-e5a8b72d0d
2018-07-15 00:00:00
github
github
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main
2018-12-21 17:50:13
nessus
nessus
Fedora 28 : hadoop (2018-e5a8b72d0d)
2019-01-03 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: hadoop-2.7.6-4.fc28
2018-07-15 03:34:22