Vulnerability Details CVE-2021-32481
Cloudera Hue 4.6.0 allows XSS via the type parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.0%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#hue
- https://my.cloudera.com/knowledge/TSB-2021-487-Cloudera-Hue-is-vulnerable-to-Cross-Site?id=324634
- https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#hue
- https://my.cloudera.com/knowledge/TSB-2021-487-Cloudera-Hue-is-vulnerable-to-Cross-Site?id=324634