CVE-2018-8003 is a vulnerability in Apache Ambari
Published on May 3, 2018
Apache Ambari, versions 1.4.0 to 2.6.1, is susceptible to a directory traversal attack allowing an unauthenticated user to craft an HTTP request which provides read-only access to any file on the filesystem of the host the Ambari Server runs on that is accessible by the user the Ambari Server is running as. Direct network access to the Ambari Server is required to issue this request, and those Ambari Servers that are protected behind a firewall, or in a restricted network zone are at less risk of being affected by this issue.
Products Associated with CVE-2018-8003
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-8003 are published in Apache Ambari:
Affected Versions
Apache Software Foundation Apache Ambari Version Apache Ambari 1.4.0 to 2.6.1 is affected by CVE-2018-8003Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.