Maven package
org.apache.hadoop/hadoop-yarn-server-nodemanager
pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-3086 | Cri | 9.8 | >= 2.6.0, < 2.6.5 | 2.6.5 | Sep 5, 2017 | The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications. |
- affected >= 2.6.0, < 2.6.5fixed 2.6.5
The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications.