7.5

CVE-2016-6605

Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization.

Data is provided by the National Vulnerability Database (NVD)
ClouderaCdh Version5.2.0
ClouderaCdh Version5.2.1
ClouderaCdh Version5.2.2
ClouderaCdh Version5.2.3
ClouderaCdh Version5.2.4
ClouderaCdh Version5.2.5
ClouderaCdh Version5.2.6
ClouderaCdh Version5.3.0
ClouderaCdh Version5.3.1
ClouderaCdh Version5.3.2
ClouderaCdh Version5.3.3
ClouderaCdh Version5.3.4
ClouderaCdh Version5.3.5
ClouderaCdh Version5.3.6
ClouderaCdh Version5.3.7
ClouderaCdh Version5.3.8
ClouderaCdh Version5.3.9
ClouderaCdh Version5.3.10
ClouderaCdh Version5.4.0
ClouderaCdh Version5.4.1
ClouderaCdh Version5.4.2
ClouderaCdh Version5.4.3
ClouderaCdh Version5.4.4
ClouderaCdh Version5.4.5
ClouderaCdh Version5.4.6
ClouderaCdh Version5.4.7
ClouderaCdh Version5.4.8
ClouderaCdh Version5.4.9
ClouderaCdh Version5.4.10
ClouderaCdh Version5.4.11
ClouderaCdh Version5.5.0
ClouderaCdh Version5.5.1
ClouderaCdh Version5.5.2
ClouderaCdh Version5.5.3
ClouderaCdh Version5.5.4
ClouderaCdh Version5.5.5
ClouderaCdh Version5.5.6
ClouderaCdh Version5.6.0
ClouderaCdh Version5.6.1
ClouderaCdh Version5.7.0
ClouderaCdh Version5.7.1
ClouderaCdh Version5.7.2
ClouderaCdh Version5.8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.21% 0.405
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.