Sensitive Information Exposure in Apache Ambari 2.x

Sensitive Information Exposure in Apache Ambari 2.x

CVE-2016-4976 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing.

Learn more about our User Device Pen Test.