CVE-2015-6495

Published: Nov 26, 2019Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

There is Sensitive Information in Cloudera Manager before 5.4.6 Diagnostic Support Bundles.

Affected (6)

Products: Cloudera: Cloudera Manager

1 product

Cloudera Manager

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Cloudera Cloudera Manager	Before 4.8.6
Cloudera Cloudera Manager	From 5.0.0 to 5.0.7
Cloudera Cloudera Manager	From 5.1.0 to 5.1.6
Cloudera Cloudera Manager	From 5.2.0 to 5.2.7
Cloudera Cloudera Manager	From 5.3.0 to 5.3.7
Cloudera Cloudera Manager	From 5.4.0 to 5.4.6

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#concept_alalsdfkl4320_lfsk30f__l2k3jfsw34__39

Source: cve@mitre.org

Vendor Advisory

https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#concept_alalsdfkl4320_lfsk30f__l2k3jfsw34__39

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.