Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8733

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2014-8733
Last Modified 11 Feb 2015 12:20:03
Published 10 Feb 2015 02:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2014-8733

Summary

Cloudera Manager 5.2.0, 5.2.1, and 5.3.0 stores the LDAP bind password in plaintext in unspecified world-readable files under /etc/hadoop, which allows local users to obtain this password.

Vulnerable Systems

Application

  • Cloudera Manager 5.2.0

  • Cloudera Manager 5.2.1

  • Cloudera Manager 5.3.0


References

CONFIRM - http://www.cloudera.com/content/cloudera/en/documentation/security-bulletins/Security-Bulletin/csb_topic_2.html


Last Updated: 27 May 2016 11:07:44