CVE-2020-9492 in Apache and Oracle Products
Published on January 26, 2021

In Apache Hadoop 3.2.0 to 3.2.1, 3.0.0-alpha1 to 3.1.3, and 2.0.0-alpha to 2.10.0, WebHDFS client might send SPNEGO authorization header to remote URL without proper verification.

NVD

Products Associated with CVE-2020-9492

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-9492 are published in these products:

Apache Hadoop

Apache Solr

Oracle Financial Services Crime Compliance Management Studio

Exploit Probability

EPSS

0.14%

Percentile

34.40%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-9492 in Apache and Oracle ProductsPublished on January 26, 2021

Products Associated with CVE-2020-9492

Exploit Probability

CVE-2020-9492 in Apache and Oracle Products
Published on January 26, 2021