CVE-2017-7669 is a vulnerability in Apache Hadoop
Published on June 2, 2017
In Apache Hadoop 2.8.0, 3.0.0-alpha1, and 3.0.0-alpha2, the LinuxContainerExecutor runs docker commands as root with insufficient input validation. When the docker feature is enabled, authenticated users can run commands as root.
Products Associated with CVE-2017-7669
Want to know whenever a new CVE is published for Apache Hadoop? stack.watch will email you.
Affected Versions
Apache Software Foundation Apache Hadoop:- Version 2.8.0 is affected.
- Version 3.0.0-alpha1 and 3.0.0-alpha2 is affected.
Exploit Probability
EPSS
0.30%
Percentile
52.77%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.