CVE-2017-5655

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-5655
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-5655.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-5655
Published
2017-05-15T14:29:00Z
Modified
2024-09-03T01:53:32.449656Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.

References

Affected packages

Git / github.com/apache/ambari

Affected versions

2.*

2.1.3_to_2.2.0_rename

Ambari-2.*

Ambari-2.1.0-tag

release-2.*

release-2.1.0
release-2.1.0-rc0
release-2.1.0-rc1
release-2.2.0-rc0
release-2.2.2
release-2.2.2-rc0
release-2.2.2-rc1
release-2.4.0
release-2.4.0-rc0
release-2.4.1
release-2.4.1-rc0
release-2.4.1-rc1
release-2.4.2-rc0
release-2.5.0
release-2.5.0-rc0
release-2.5.0-rc1
release-2.5.0-rc2