Remote Code Execution Vulnerability in Apache Hadoop 2.6.x and 2.7.x

Remote Code Execution Vulnerability in Apache Hadoop 2.6.x and 2.7.x

CVE-2016-5393 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

In Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3, a remote user who can authenticate with the HDFS NameNode can possibly run arbitrary commands with the same privileges as the HDFS service.

Learn more about our Cis Benchmark Audit For Apache Http Server.