Server-Side Request Forgery Vulnerability in Apache Ambari
CVE-2015-1775

Currently unrated

Key Information:

Vendor: Apache
Status: Ambari
Vendor: CVE Published:; 2 November 2015

What is CVE-2015-1775?

This vulnerability allows remote authenticated users to exploit the proxy endpoint in Apache Ambari, which can lead to unauthorized port scanning and access to unsecured services through a specifically crafted REST call. Attackers could leverage this security flaw to navigate the internal network and exploit weaknesses in exposed services.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://cwiki.apache.org/confluence/display/AMBARI/Ambari...

x_refsource_CONFIRM

http://www.openwall.com/lists/oss-security/2015/10/13/2

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Nov 2, 2015
Vulnerability Reserved
Feb 17, 2015

JSON

Apache

What is CVE-2015-1775?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.