Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not enabled, does not properly install taskcontroller.cfg, which allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors, a different vulnerability than CVE-2012-1574.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloudera Manager加密问题漏洞
Vulnerability Description
Cloudera Manager 3.7.5之前的3.7.x版本与Service和Configuration Manager 3.5版本中存在漏洞,该漏洞源于在Kerberos被禁用时未正确安装taskcontroller.cfg。远程认证用户可利用该漏洞借助未明向量模拟任意用户账户。
CVSS Information
N/A
Vulnerability Type
N/A