Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cloudera Navigator 2.2.x before 2.2.4 and 2.3.x before 2.3.3 include support for SSLv3 when configured to use SSL/TLS, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cloudera Navigator 安全漏洞
Vulnerability Description
Cloudera Navigator是美国Cloudera公司的一套用于Hadoop平台集成的数据管理工具。该工具提供审计数据访问和验证访问权限、搜索元数据和可视化等功能。 Cloudera Navigator 2.2.4之前的2.2.x版本和2.3.3之前的2.3.x版本中存在安全漏洞。攻击者可利用该漏洞实施中间人攻击获取明文数据。
CVSS Information
N/A
Vulnerability Type
N/A