Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the MapR File System in MapR Converged Data Platform and MapR-XD 6.x and earlier. Under certain conditions, it is possible for MapR ticket credentials to become compromised, allowing a user to escalate their privileges to act as (aka impersonate) any other user, including cluster administrators, aka bug# 31935. This affects all users who have enabled security on the MapR platform and is fixed in mapr-patch-5.2.1.42646.GA-20180731093831, mapr-patch-5.2.2.44680.GA-20180802011430, mapr-patch-6.0.0.20171109191718.GA-20180802011420, and mapr-patch-6.0.1.20180404222005.GA-20180806214919.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MapR Converged Data Platform和MapR-XD MapR文件系统安全漏洞
Vulnerability Description
MapR Converged Data Platform和MapR-XD都是美国MapR Technologies公司的产品。MapR Converged Data Platform是一套用于支持大数据应用程序的融合数据平台。MapR-XD是一套分布式数据存储系统。 MapR Converged Data Platform和MapR-XD 6.x及之前版本中的MapR文件系统存在安全漏洞。攻击者可利用该漏洞提升权限,进而模拟任何其他用户,包括集群管理员。
CVSS Information
N/A
Vulnerability Type
N/A