Unrated severityNVD Advisory· Published Apr 12, 2012· Updated Apr 29, 2026
CVE-2012-2230
CVE-2012-2230
Description
Cloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not enabled, does not properly install taskcontroller.cfg, which allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors, a different vulnerability than CVE-2012-1574.
Affected products
11cpe:2.3:a:cloudera:cloudera_manager:3.7.0:*:enterprise:*:*:*:*:*+ 9 more
- cpe:2.3:a:cloudera:cloudera_manager:3.7.0:*:enterprise:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.0:*:free:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.1:*:free:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.2:*:enterprise:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.2:*:free:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.3:*:enterprise:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.3:*:free:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.4:*:enterprise:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_manager:3.7.4:*:free:*:*:*:*:*
- cpe:2.3:a:cloudera:cloudera_service_and_configuration_manager:3.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.