Privilege Escalation Vulnerability in Apache Hadoop

CVE-2018-8029 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

In Apache Hadoop versions 3.0.0-alpha1 to 3.1.0, 2.9.0 to 2.9.1, and 2.2.0 to 2.8.4, a user who can escalate to yarn user can possibly run arbitrary commands as root user.

Learn more about our Cis Benchmark Audit For Apache Http Server.