CVE-2025-27821
published 2026-01-26CVE-2025-27821: Out-of-bounds Write vulnerability in Apache Hadoop HDFS native client. This issue affects Apache Hadoop: from 3.2.0 before 3.4.2. Users are recommended to…
high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
Out-of-bounds Write vulnerability in Apache Hadoop HDFS native client.
This issue affects Apache Hadoop: from 3.2.0 before 3.4.2.
Users are recommended to upgrade to version 3.4.2, which fixes the issue.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | hadoop | — | — |
| apache | hadoop | >= 3.2.0 < 3.4.2 | 3.4.2 |
| apache_software_foundation | hdfs_native_client | >= 3.2.0 < 3.4.2 | 3.4.2 |