pkg:maven/org.apache.ambari/ambari
Type
maven
Namespace
org.apache.ambari
Name
ambari
Known advisories, vulnerabilities and fixes for org.apache.ambari/ambari package.
Critical
1
High
2
Moderate
5
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 1.5.0, < 2.1.0 |
CVE-2015-1775
|
 MAVEN:GHSA-9G2J-5685-H44H
|
Apache Ambari SSRF Vulnerability | moderate |
2022-05-17T04:03:11
(2 years ago) |
|
| Fixed | = 2.1.0 |
CVE-2015-1775
|
MAVEN:GHSA-9G2J-5685-H44H
|
Apache Ambari SSRF Vulnerability | moderate |
2022-05-17T04:03:11
(2 years ago) |
|
| Affected | < 2.7.8 |
CVE-2023-50378
|
MAVEN:GHSA-9Q6V-RXMW-G3GH
|
Apache Ambari: Various Cross site scripting problems | moderate |
2024-03-01T15:31:38
(6 months ago) |
|
| Fixed | = 2.7.8 |
CVE-2023-50378
|
MAVEN:GHSA-9Q6V-RXMW-G3GH
|
Apache Ambari: Various Cross site scripting problems | moderate |
2024-03-01T15:31:38
(6 months ago) |
|
| Affected | >= 2.4.0, < 2.4.2 |
CVE-2016-6807
|
MAVEN:GHSA-J76Q-99X2-V7VQ
|
Apache Ambari Improper Access Control | critical |
2022-05-17T02:51:56
(2 years ago) |
|
| Fixed | = 2.4.2 |
CVE-2016-6807
|
MAVEN:GHSA-J76Q-99X2-V7VQ
|
Apache Ambari Improper Access Control | critical |
2022-05-17T02:51:56
(2 years ago) |
|
| Affected | >= 2.7.0, < 2.7.7 |
CVE-2022-42009
|
MAVEN:GHSA-M384-PJ54-5VR2
|
Apache Ambari Expression Language Injection vulnerability | high |
2023-07-12T12:31:35
(14 months ago) |
|
| Fixed | = 2.7.7 |
CVE-2022-42009
|
MAVEN:GHSA-M384-PJ54-5VR2
|
Apache Ambari Expression Language Injection vulnerability | high |
2023-07-12T12:31:35
(14 months ago) |
|
| Affected | >= 2.7.0, < 2.7.7 |
CVE-2022-45855
|
MAVEN:GHSA-P7W2-784M-QPQ9
|
Apache Ambari Expression Language Injection vulnerability | high |
2023-07-12T12:31:35
(14 months ago) |
|
| Fixed | = 2.7.7 |
CVE-2022-45855
|
MAVEN:GHSA-P7W2-784M-QPQ9
|
Apache Ambari Expression Language Injection vulnerability | high |
2023-07-12T12:31:35
(14 months ago) |
|
| Affected | >= 2.0.0, < 2.4.0 |
CVE-2016-4976
|
MAVEN:GHSA-Q3PW-6VF2-66HF
|
Apache Ambari reveals administrator passwords | moderate |
2022-05-17T02:52:22
(2 years ago) |
|
| Fixed | = 2.4.0 |
CVE-2016-4976
|
MAVEN:GHSA-Q3PW-6VF2-66HF
|
Apache Ambari reveals administrator passwords | moderate |
2022-05-17T02:52:22
(2 years ago) |
|
| Affected | < 2.7.4 |
CVE-2020-1936
|
MAVEN:GHSA-Q7Q9-W24Q-CPGH
|
Cross-site Scripting (XSS) in Apache Ambari Views | moderate |
2022-01-06T20:35:22
(2 years ago) |
|
| Fixed | = 2.7.4 |
CVE-2020-1936
|
MAVEN:GHSA-Q7Q9-W24Q-CPGH
|
Cross-site Scripting (XSS) in Apache Ambari Views | moderate |
2022-01-06T20:35:22
(2 years ago) |
|
| Affected | >= 1.7.0, < 2.1.2 |
CVE-2015-5210
|
MAVEN:GHSA-W3P6-94X2-XCVM
|
Apache Ambari Open Redirect | moderate |
2022-05-17T04:03:11
(2 years ago) |
|
| Fixed | = 2.1.2 |
CVE-2015-5210
|
MAVEN:GHSA-W3P6-94X2-XCVM
|
Apache Ambari Open Redirect | moderate |
2022-05-17T04:03:11
(2 years ago) |