SB2017051303 - Multiple vulnerabilities in Ambari

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017051303

SB2017051303 - Multiple vulnerabilities in Ambari

Published: May 13, 2017 Updated: August 8, 2020

Security Bulletin ID SB2017051303
Severity
Medium
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Remote access
Highest impact Information disclosure

Breakdown by Severity

Medium 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Information disclosure (CVE-ID: CVE-2017-5655)

The vulnerability allows a remote authenticated user to gain access to sensitive information.

In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.


2) XML injection (CVE-ID: CVE-2017-5654)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

In Ambari 2.4.x (before 2.4.3) and Ambari 2.5.0, an authorized user of the Ambari Hive View may be able to gain unauthorized read access to files on the host where the Ambari server executes.


Remediation

Install update from vendor's website.

References