CVE-2017-3161

Опубликовано: 26 апр. 2017

Источник: debian

Описание

The HDFS web UI in Apache Hadoop before 2.7.0 is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.

Пакет	Статус	Версия исправления	Релиз	Тип
hadoop	itp			package

CVE-2017-3161

CVSS3: 6.1

nvd

почти 9 лет назад

The HDFS web UI in Apache Hadoop before 2.7.0 is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.

GHSA-qm7f-r83w-3p46

CVSS3: 6.1

github

больше 3 лет назад

Improper Neutralization of Input During Web Page Generation in Apache Hadoop