CVE-2023-50379: Apache Ambari: authenticated users could perform command injection to perform RCE

CVE-2023-50379: Apache Ambari: authenticated users could perform command injection to perform RCE

Open Source Security [[{„value“:“

Posted by Brahma Reddy Battula on Feb 26

Severity: important

Affected versions:

– Apache Ambari 2.7.0 through 2.7.7

Description:

Malicious code injection in Apache Ambari in prior to 2.7.8. Users are recommended to upgrade to version 2.7.8, which
fixes this issue.

Impact:
A Cluster Operator can manipulate the request by adding a malicious code injection and gain a root over the cluster
main host.

References:

https://ambari.apache.org/
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert