Vulnerabilities (CVE)

Filtered by vendor Cloudera Subscribe
Filtered by product Cloudera Manager
Total 22 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-0220 1 Cloudera 1 Cloudera Manager 2024-11-21 4.0 MEDIUM N/A
Cloudera Manager before 4.8.3 and 5.x before 5.0.1 allows remote authenticated users to obtain sensitive configuration information via the API.
CVE-2012-2230 1 Cloudera 2 Cloudera Manager, Cloudera Service And Configuration Manager 2024-11-21 6.5 MEDIUM N/A
Cloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not enabled, does not properly install taskcontroller.cfg, which allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors, a different vulnerability than CVE-2012-1574.