Vulnerabilities > Cloudera > CDH

DATE CVE VULNERABILITY TITLE RISK
2017-03-23 CVE-2013-6446 Permissions, Privileges, and Access Controls vulnerability in Cloudera CDH
The JobHistory Server in Cloudera CDH 4.x before 4.6.0 and 5.x before 5.0.0 Beta 2, when using MRv2/YARN with HTTP authentication, allows remote authenticated users to obtain sensitive job information by leveraging failure to enforce job ACLs.
network
high complexity
cloudera CWE-264
3.1