Miggo Logo

CVE-2016-3086: Exposure of Sensitive Information to an Unauthorized Actor in Apache Hadoop

9.8

CVSS Score
3.0

Basic Information

EPSS Score
0.61663%
Published
5/17/2022
Updated
1/27/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.apache.hadoop:hadoop-yarn-server-nodemanagermaven>= 2.6.0, <= 2.6.42.6.5
org.apache.hadoop:hadoop-yarn-server-nodemanagermaven>= 2.7.0, <= 2.7.22.7.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

T** Y*RN No**M*n***r in *p**** ***oop *.*.x ***or* *.*.* *n* *.*.x ***or* *.*.* **n l**k t** p*sswor* *or *r***nti*l stor* provi**r us** *y t** No**M*n***r to Y*RN *ppli**tions.

Reasoning

No *n*lysis *v*il**l*