Cloudera Hue 4.6.0 allows XSS via the type parameter.
References
Link | Resource |
---|---|
https://docs.cloudera.com/documentation/other/security-bulletins/topics/Security-Bulletin.html#hue | Not Applicable Vendor Advisory |
https://my.cloudera.com/knowledge/TSB-2021-487-Cloudera-Hue-is-vulnerable-to-Cross-Site?id=324634 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-11-08T12:21:35
Updated: 2021-11-08T12:21:35
Reserved: 2021-05-10T00:00:00
Link: CVE-2021-32481
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-08T13:15:07.610
Modified: 2021-11-09T22:13:44.267
Link: CVE-2021-32481
JSON object: View
Redhat Information
No data.
CWE