1. Home
  2. Vulnerabilities
  3. CVE-2023-50378

CVE-2023-50378

EPSS 0.04 % (10th)
0.04% Progress
Advisories 1
NVD Status Awaiting Analysis
Info EPSS CAPEC References Security Advisories Packages & Software Graph Web & Social Timeline

Lack of proper input validation and constraint enforcement in Apache Ambari prior to 2.7.8  

 Impact : As it will be stored XSS, Could be exploited to perform unauthorized actions, varying from data access to session hijacking and delivering malicious payloads.

Users are recommended to upgrade to version 2.7.8 which fixes this issue.

Weaknesses
CWE-20
Improper Input Validation
CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
Apache Software Foundation
Published Date
2024-03-01 15:15:08
(6 months ago)
Updated Date
2024-05-01 18:15:11
(4 months ago)