Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.
References
| Link | Resource |
|---|---|
| https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html | Not Applicable Vendor Advisory |
| https://my.cloudera.com/knowledge/TSB-2021-491-Authorization-Bypass-in-Cloudera-Manager?id=314482 | Permissions Required Vendor Advisory |
Configurations
History
12 Jul 2022, 17:42
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | NVD-CWE-Other |
09 Nov 2021, 14:05
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:cloudera:cloudera_manager:7.2.4:*:*:*:*:*:*:* | |
| CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
| References | (MISC) https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html - Not Applicable, Vendor Advisory | |
| References | (MISC) https://my.cloudera.com/knowledge/TSB-2021-491-Authorization-Bypass-in-Cloudera-Manager?id=314482 - Permissions Required, Vendor Advisory | |
| CWE | CWE-269 |
08 Nov 2021, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-11-08 14:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-30132
Mitre link : CVE-2021-30132
CVE.ORG link : CVE-2021-30132
JSON object : View
Products Affected
cloudera
- cloudera_manager
CWE