CVE-2015-3270

CWE-2645 documents4 sources
Severity
6.5MEDIUM
EPSS
0.8%
top 26.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Ambari
Timeline
PublishedNov 2
Latest updateMay 17

Description

Apache Ambari before 2.0.2 or 2.1.x before 2.1.1 allows remote authenticated users to gain administrative privileges via unspecified vectors, possibly related to changing passwords.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages1 packages

NVDapache/ambari4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-xprv-fqx6-cfrr: Apache Ambari before 22022-05-17
CVEList
CVE-2015-3270: Apache Ambari before 22015-11-02

💬Community

2
Bugzilla
CVE-2015-5210 CVE-2015-3186 CVE-2015-3270 CVE-2015-1775 Apache Ambari: multiple flaws fixed in 2.1.22015-10-19
Bugzilla
CVE-2015-3186 CVE-2015-3270 CVE-2015-5210 CVE-2015-1775 Apache Ambari: multiple flaws fixed in 2.1.2 [fedora-all]2015-10-19
CVE-2015-3270 (MEDIUM CVSS 6.5) | Apache Ambari before 2.0.2 or 2.1.x | cvebase.io