CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15718

The YARN NodeManager in Apache Hadoop 2.7.3 and 2.7.4 can leak the password for credential store provider used by the NodeManager to YARN Applications.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

https://lists.apache.org/thread.html/773c93c2d8a6a52bbe97610c2b1c2ad205b970e1b8c04fb5b2fccad6%40%3Cgeneral.hadoop.apache.org%3E
https://lists.apache.org/thread.html/773c93c2d8a6a52bbe97610c2b1c2ad205b970e1b8c04fb5b2fccad6%40%3Cgeneral.hadoop.apache.org%3E

Products affected by CVE-2017-15718

Apache » Hadoop » Version: 2.7.3

cpe:2.3:a:apache:hadoop:2.7.3
Apache » Hadoop » Version: 2.7.4

cpe:2.3:a:apache:hadoop:2.7.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15718

Products

Pricing

Contact Us