CVE-2016-3086 is a vulnerability in Apache Hadoop
Published on September 5, 2017
The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications.
Products Associated with CVE-2016-3086
Want to know whenever a new CVE is published for Apache Hadoop? stack.watch will email you.
Affected Versions
Apache Software Foundation Apache Hadoop:- Version 2.6.0 to 2.6.4 is affected.
- Version 2.7.0 to 2.7.2 is affected.
Exploit Probability
EPSS
0.43%
Percentile
62.07%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.