Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloudera Manager 5.2.0, 5.2.1, and 5.3.0 stores the LDAP bind password in plaintext in unspecified world-readable files under /etc/hadoop, which allows local users to obtain this password.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloudera Manager 安全漏洞
Vulnerability Description
Cloudera Manager是美国Cloudera公司的一套Hadoop数据管理软件。该软件支持创建集群、身份验证、数据备份和恢复等。 Cloudera Manager中存在安全漏洞,该漏洞源于程序在/etc/hadoop目录下的全局可读文件中以明文形式存储LDAP绑定密码。本地攻击者可利用该漏洞获取密码。以下版本受到影响:Cloudera Manager 5.2.0版本,5.2.1版本,5.3.0版本。
CVSS Information
N/A
Vulnerability Type
N/A