Vulnerabilities > Cloudera > CDH > 5.11.0

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2018-17860 Incorrect Default Permissions vulnerability in Cloudera CDH
Cloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15.1 and 6.x through 6.0.1.
network
low complexity
cloudera CWE-276
7.2
7.2
2019-07-03 CVE-2017-9325 Improper Authorization vulnerability in Cloudera CDH
The provided secure solrconfig.xml sample configuration does not enforce Sentry authorization on /update/json/docs.
network
low complexity
cloudera CWE-285
7.5
7.5