CVE-2016-4976

CVE-2016-4976

EPSS 0.5%

Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 http://www.securityfocus.com/bid/97229