CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apache: >> Ambari >> 2.1.1 Security Vulnerabilities

CVE-2016-0707

The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data and (2) /var/lib/ambari-agent/keys directories, which allows local users to obtain sensitive information by reading files in the directories.

CVSS Score

3.3

EPSS Score

0.001

Published

2016-05-18

CVE-2015-5210

Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.

CVSS Score

5.8

EPSS Score

0.01

Published

2015-11-02

Page 2

Vulnerabilities

Vulnerable Software

Apache: >> Ambari >> 2.1.1 Security Vulnerabilities

Products

Pricing

Contact Us