CVE-2012-1574
published 2012-04-12CVE-2012-1574: The Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 through 0.20.205.0, 0.23.x before 0.23.2, and 1.0.x before 1.0.2, as used in Cloudera…
medium6.5CVSS 3.1
AVNACLAuSCPIPAP
The Kerberos/MapReduce security functionality in Apache Hadoop 0.20.203.0 through 0.20.205.0, 0.23.x before 0.23.2, and 1.0.x before 1.0.2, as used in Cloudera CDH CDH3u0 through CDH3u2, Cloudera hadoop-0.20-sbin before 0.20.2+923.197, and other products, allows remote authenticated users to impersonate arbitrary cluster user accounts via unspecified vectors.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| apache | hadoop | — | — |
| cloudera | cloudera_cdh | — | — |
| cloudera | cloudera_manager | — | — |
| cloudera | cloudera_manager | — | — |
| cloudera | cloudera_manager | — | — |
| cloudera | cloudera_manager | — | — |
| cloudera | cloudera_manager | — | — |
| cloudera | cloudera_service_and_configuration_manager | — | — |
| cloudera | hadoop | — | — |
| cloudera | hadoop | — | — |
| cloudera | hadoop | — | — |