Cross-Site Scripting (XSS) Vulnerabilities in Cloudera Manager UI before 5.4.3

Cross-Site Scripting (XSS) Vulnerabilities in Cloudera Manager UI before 5.4.3

CVE-2015-4457 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI before 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.

Learn more about our Web App Pen Testing.