CVE-2018-11766 is a vulnerability in Apache Hadoop
Published on November 27, 2018

In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user.

NVD

Products Associated with CVE-2018-11766

Want to know whenever a new CVE is published for Apache Hadoop? stack.watch will email you.

Apache Hadoop

Affected Versions

Apache Software Foundation Apache Hadoop Version Apache Hadoop 2.7.4 to 2.7.6 is affected by CVE-2018-11766

Exploit Probability

EPSS

0.49%

Percentile

65.13%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11766 is a vulnerability in Apache HadoopPublished on November 27, 2018

Products Associated with CVE-2018-11766

Affected Versions

Exploit Probability

CVE-2018-11766 is a vulnerability in Apache Hadoop
Published on November 27, 2018