CVE-2012-2230
Published Apr 12, 2012
Last updated 7 years ago
Overview
- Description
- Cloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not enabled, does not properly install taskcontroller.cfg, which allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors, a different vulnerability than CVE-2012-1574.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-310
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.0:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "60A7E823-B7D4-4972-8DCC-EC668E170EA4"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.0:*:free:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CEFAF08B-E403-45AB-B147-F0B690664413"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.1:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0C3ECADB-EA56-42F8-ACBA-B9D296632692"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.1:*:free:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0FAFAC6B-1340-403C-B2FA-CB75B20A9714"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.2:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2047A534-70EF-4071-990A-A257DB77A99D"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.2:*:free:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7CA232D1-1D80-4805-8BF0-CFCD8CD0A244"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.3:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27F18170-BC95-4DD0-8B77-86D34ECF094A"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.3:*:free:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "610DA26A-7D84-4B2B-8D22-A6401C7C319F"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.4:*:enterprise:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7CC93E41-3252-4F41-ABE2-E37986986C87"
},
{
"criteria": "cpe:2.3:a:cloudera:cloudera_manager:3.7.4:*:free:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9CC066DF-F5E1-4330-9E76-DCB03CC05038"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cloudera:cloudera_service_and_configuration_manager:3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19B818AF-B806-49AE-B3DA-FC7CF7A5B917"
}
],
"operator": "OR"
}
]
}
]