Improper access control in Ambari - CVE-2016-6807
Published: March 28, 2017 / Updated: February 8, 2021
Vulnerability identifier: #VU39347
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2016-6807
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Apache Foundation
Affected software:
Ambari
Ambari
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Custom commands may be executed on Ambari Agent (2.4.x, before 2.4.2) hosts without authorization, leading to unauthorized access to operations that may affect the underlying system. Such operations are invoked by the Ambari Agent process on Ambari Agent hosts, as the user executing the Ambari Agent process.
How to mitigate CVE-2016-6807
Install update from vendor's website.