Password Leakage in YARN NodeManager Credential Store Provider

Password Leakage in YARN NodeManager Credential Store Provider

CVE-2016-3086 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications.

Learn more about our Cis Benchmark Audit For Apache Http Server.