Cross-Site Scripting (XSS) Vulnerabilities in Cloudera Manager UI before 5.4.3
CVE-2015-4457 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Multiple cross-site scripting (XSS) vulnerabilities in the Cloudera Manager UI before 5.4.3 allow remote authenticated users to inject arbitrary web script or HTML using unspecified vectors.
Learn more about our Web App Pen Testing.