CVE-2018-11766: Arbitrary Command Execution in Hadoop
8.8
CVSS Score
3.0
Basic Information
CVE ID
GHSA ID
EPSS Score
0.71347%
CWE
-
Published
12/21/2018
Updated
1/9/2023
KEV Status
No
Technology
Java
Technical Details
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
org.apache.hadoop:hadoop-main | maven | >= 2.7.4, <= 2.7.6 | 2.7.7 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from incomplete fixes in container command execution path where: 1) LinuxContainerExecutor
runs with root privileges 2) Previous CVE-2016-6811 patching was insufficient 3) Advisory specifies yarn->root escalation vector. The startContainer()
method is the logical location where container command execution would be initiated, making it the most likely vulnerable point based on the described attack pattern and Hadoop
's architecture.