CVE-2015-4928

Currently unrated

Key Information:

Vendor: Apache
Status: Ambari
Vendor: CVE Published:; 8 November 2015

Summary

Apache Ambari before 2.1, as used in IBM Infosphere BigInsights 4.x before 4.1, includes cleartext passwords on a Configs screen, which allows physically proximate attackers to obtain sensitive information by reading password fields.

References

http://www.securitytracker.com/id/1034102

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21969202

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 8, 2015
Vulnerability Reserved
Jun 24, 2015