CVE-2017-5655
- Source
- https://cve.org/CVERecord?id=CVE-2017-5655
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-5655.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-5655
- Published
- 2017-05-15T14:29:00.213Z
- Modified
- 2026-04-10T04:01:43.153176Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.
- References
Affected packages
Git / github.com/apache/ambari
Affected ranges
- Type
- GIT
- Repo
- https://github.com/apache/ambari
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.2.2" }, { "introduced": "0" }, { "last_affected": "2.2.2-rc0" }, { "introduced": "0" }, { "last_affected": "2.2.2-rc1" }, { "introduced": "0" }, { "last_affected": "2.4.0" }, { "introduced": "0" }, { "last_affected": "2.4.0-rc0" }, { "introduced": "0" }, { "last_affected": "2.4.1" }, { "introduced": "0" }, { "last_affected": "2.4.1-rc0" }, { "introduced": "0" }, { "last_affected": "2.4.1-rc1" }, { "introduced": "0" }, { "last_affected": "2.4.2" }, { "introduced": "0" }, { "last_affected": "2.4.2-rc0" }, { "introduced": "0" }, { "last_affected": "2.4.2-rc1" }, { "introduced": "0" }, { "last_affected": "2.5.0" }, { "introduced": "0" }, { "last_affected": "2.5.0-rc0" }, { "introduced": "0" }, { "last_affected": "2.5.0-rc1" }, { "introduced": "0" }, { "last_affected": "2.5.0-rc2" } ] }
Affected versions
2.*
2.1.3_to_2.2.0_rename
Ambari-2.*
Ambari-2.1.0-tag
release-2.*
release-2.1.0
release-2.1.0-rc0
release-2.1.0-rc1
release-2.2.0-rc0
release-2.2.2
release-2.2.2-rc0
release-2.2.2-rc1
release-2.4.0
release-2.4.0-rc0
release-2.4.1
release-2.4.1-rc0
release-2.4.1-rc1
release-2.4.2
release-2.4.2-rc0
release-2.4.2-rc1
release-2.5.0
release-2.5.0-rc0
release-2.5.0-rc1
release-2.5.0-rc2