Where
-Infinity
0

Trending

Last week
Last month
Last year

Apache HadoopHDFS native client: Out of bounds write in URI parser of native HDFS client

Risk 54
Severity
7.3
First published (updated )
CVE-2025-27821

CVE-2024-23454: Apache Hadoop: Temporary File Local Information Disclosu

First published (updated )
https://seclists.org/oss-sec/2024/q3/269

maven/org.apache.hadoop:hadoop-yarn-projectPrivilege escalation in Apache Hadoop Yarn container-executor binary on Linux systems

Risk 73
Severity
7.5
First published (updated )
CVE-2023-26031

Apache HadoopApache Hadoop YARN remote code execution in ZKConfigurationStore of capacity scheduler

Risk 79
Severity
8.8
First published (updated )
CVE-2021-25642

Apache HadoopCommand injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar

Risk 86
Severity
9.8
First published (updated )
CVE-2022-25168
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HadoopApache Hadoop Privilege escalation vulnerability

Risk 78
Severity
9
First published (updated )
CVE-2021-33036

Apache HadoopHeap buffer overflow in libhdfs native library

Risk 86
Severity
9.8
First published (updated )
CVE-2021-37404

Apache HadoopArbitrary file write in FileUtil#unpackEntries on Windows

Risk 86
Severity
9.8
First published (updated )
CVE-2022-26612

redhat/hadoopIn Apache Hadoop 3.2.0 to 3.2.1, 3.0.0-alpha1 to 3.1.3, and 2.0.0-alpha to 2.10.0, WebHDFS client mi…

Risk 81
Severity
8.8
First published (updated )
CVE-2020-9492

Apache HadoopWeb endpoint authentication check is broken in Apache Hadoop 3.0.0-alpha4, 3.0.0-beta1, and 3.0.0. A…

Risk 78
Severity
9
First published (updated )
CVE-2018-11764
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HadoopIn Apache Hadoop versions 3.0.0-alpha2 to 3.0.0, 2.9.0 to 2.9.2, 2.8.0 to 2.8.5, any users can acces…

Risk 43
Severity
7.5
First published (updated )
CVE-2018-11765

Apache Software Foundation Hadoop 3.3End of life details

First published (updated )
EOL-apache-hadoop-3.3

Apache Software Foundation Hadoop 3.3End of life details

First published (updated )
latest-version-apache-hadoop-3.3

Apache Software Foundation Hadoop 2.10End of life details

First published (updated )
latest-version-apache-hadoop-2.10

Apache Software Foundation Hadoop 2.10End of life details

First published (updated )
EOL-apache-hadoop-2.10
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.apache.hadoop:hadoop-mainHadoop 1.0.3 contains a symlink vulnerability.

Risk 43
Severity
7.5
First published (updated )
CVE-2012-2945

IBM PUBConnect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, wh…

Risk 89
Severity
9.8
First published (updated )
CVE-2019-17195

Apache HadoopBuffer Overflow

Risk 43
Severity
7.5
First published (updated )
CVE-2018-11768

Apache HadoopIn Apache Hadoop versions 3.0.0-alpha1 to 3.1.0, 2.9.0 to 2.9.1, and 2.2.0 to 2.8.4, a user who can …

Risk 78
Severity
9
First published (updated )
CVE-2018-8029

Apache HadoopIn Apache Hadoop 2.9.0 to 2.9.1, 2.8.3 to 2.8.4, 2.7.5 to 2.7.6, KMS blocking users or granting acce…

Risk 56
Severity
7.4
First published (updated )
CVE-2018-11767
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache HadoopInfoleak

Risk 43
Severity
7.5
First published (updated )
CVE-2018-1296

Apache Software Foundation Hadoop 3.2Reached end of life

EOL
Dec 21, 2023
First published (updated )
latest-version-apache-hadoop-3.2

Apache Software Foundation Hadoop 3.2Reached end of life

EOL
Dec 21, 2023
First published (updated )
EOL-apache-hadoop-3.2

Apache HadoopIn Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can es…

Risk 78
Severity
9
First published (updated )
CVE-2018-11766

Apache HadoopPath Traversal

Risk 83
Severity
8.8
First published (updated )
CVE-2018-8009
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache Software Foundation Hadoop 3.1Reached end of life

EOL
Aug 18, 2020
First published (updated )
EOL-apache-hadoop-3.1

Apache Software Foundation Hadoop 3.1Reached end of life

EOL
Aug 18, 2020
First published (updated )
latest-version-apache-hadoop-3.1

Apache HadoopThe YARN NodeManager in Apache Hadoop 2.7.3 and 2.7.4 can leak the password for credential store pro…

Risk 86
Severity
9.8
First published (updated )
CVE-2017-15718

Apache HadoopInfoleak

Risk 38
Severity
6.5
First published (updated )
CVE-2017-15713

Apache Software Foundation Hadoop 3.0Reached end of life

EOL
Jun 10, 2018
First published (updated )
EOL-apache-hadoop-3.0
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203