Cloudera Manager 5.x, 6.x, 7.1.x, 7.2.x, and 7.3.x allows XSS via the path parameter.
2021-11-08T13:15:07.653
2024-11-21T06:07:07.263
Modified
CVSSv3.1: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | cloudera | cloudera_manager | ≤ 5.16.2 | Yes |
| Application | cloudera | cloudera_manager | ≤ 6.3.4 | Yes |
| Application | cloudera | cloudera_manager | ≤ 7.1.4 | Yes |
| Application | cloudera | cloudera_manager | ≤ 7.2.4 | Yes |
| Application | cloudera | cloudera_manager | ≤ 7.3.4 | Yes |