Fixed Common Vulnerabilities and Exposures in Cloudera Manager 7.13.1
Common Vulnerabilities and Exposures (CVE) that are fixed in Cloudera Manager 7.13.1 associated with Cloudera Private Cloud Base 7.3.1 and Cloudera Public Cloud 7.3.1.
Cloudera Manager 7.13.1
| CVEs | Package Name |
|---|---|
| CVE-2019-14893 | Jackson-databind |
| CVE-2020-9546 | Jackson-databind |
| CVE-2020-10672 | Jackson-databind |
| CVE-2020-10968 | Jackson-databind |
| CVE-2020-10969 | Jackson-databind |
| CVE-2020-11111 | Jackson-databind |
| CVE-2020-11112 | Jackson-databind |
| CVE-2020-11113 | Jackson-databind |
| CVE-2020-11619 | Jackson-databind |
| CVE-2020-11620 | Jackson-databind |
| CVE-2020-14060 | Jackson-databind |
| CVE-2020-14061 | Jackson-databind |
| CVE-2020-14062 | Jackson-databind |
| CVE-2020-14195 | Jackson-databind |
| CVE-2020-35728 | Jackson-databind |
| CVE-2020-25649 | Jackson-databind |
| CVE-2021-29425 | commons-io |
| CVE-2021-28168 | Jersey |
| CVE-2023-33202 | Bouncycastle |
| CVE-2024-34447 | Bouncycastle |
| CVE-2024-29857 | Bouncycastle |
| CVE-2024-30171 | Bouncycastle |
| CVE-2023-33201 | Bouncycastle |
| CVE-2020-11971 | Apache Camel |
| CVE-2018-1282 | Apache Hive |
| CVE-2018-11777 | Apache Hive |
| CVE-2021-34538 | Apache Hive |
| CVE-2020-1926 | Apache Hive |
| CVE-2018-1314 | Apache Hive |
| CVE-2018-1284 | Apache Hive |
| CVE-2018-1315 | Apache Hive |
| CVE-2021-46877 | Jackson-databind |
| CVE-2020-13697 | Nanohttpd |
| CVE-2022-21230 | Nanohttpd |
| CVE-2024-29736 | Apache CXF |
| CVE-2024-32007 | Apache CXF |
| CVE-2022-1415 | Drools |
| CVE-2021-41411 | Drools |
| CVE-2018-8009 | Apache Hadoop |
| CVE-2014-3577 | Apache httpclient |
| CVE-2015-5262 | Apache httpclient |
| CVE-2016-6811 | Apache Hadoop |
| CVE-2018-8029 | Apache Hadoop |
| CVE-2018-11768 | Apache Hadoop |
| CVE-2018-1296 | Apache Hadoop |
| CVE-2017-3162 | Apache Hadoop |
| CVE-2017-15713 | Apache Hadoop |
| CVE-2017-3161 | Apache Hadoop |
| CVE-2016-5001 | Apache Hadoop |
| CVE-2016-3086 | Apache Hadoop |
| CVE-2016-5393 | Apache Hadoop |
| CVE-2024-23454 | Apache Hadoop |
| CVE-2018-11765 | Apache Hadoop |
| CVE-2020-9492 | Apache Hadoop |
| CVE-2015-1776 | Apache Hadoop |
| CVE-2016-10735 | Bootstrap |
| CVE-2018-14041 | Bootstrap |
| CVE-2018-14042 | Bootstrap |
| CVE-2018-20676 | Bootstrap |
| CVE-2018-20677 | Bootstrap |
| CVE-2019-8331 | Bootstrap |
| CVE-2020-28458 | Datatables |
| CVE-2021-23445 | Datatables |
| CVE-2015-6584 | Datatables |
| CVE-2016-4055 | moment.js |
| CVE-2019-20444 | Netty |
| CVE-2019-20445 | Netty |
| CVE-2015-2156 | Netty |
| CVE-2016-4970 | Netty |
| CVE-2019-16869 | Netty |
| CVE-2020-7238 | Netty |
| CVE-2021-37136 | Netty |
| CVE-2021-37137 | Netty |
| CVE-2022-41881 | Netty |
| CVE-2021-43797 | Netty |
| CVE-2023-34462 | Netty |
| CVE-2021-21295 | Netty |
| CVE-2021-21409 | Netty |
| CVE-2021-21290 | Netty |
| CVE-2022-24823 | Netty |
| CVE-2017-3166 | Apache Hadoop |
| CVE-2017-15718 | Apache Hadoop |
| CVE-2018-8025 | Apache Hbase |
| CVE-2019-0212 | Apache Hbase |
| CVE-2022-25647 | Gson |
| CVE-2019-9518 | Netty |
| CVE-2020-11612 | Netty |
| CVE-2016-5724 | Cloudera CDH |
| CVE-2017-9325 | Cloudera CDH |
| CVE-2021-41561 | Apache Parquet |
| CVE-2022-26612 | Apache Hadoop |
| CVE-2024-36124 | Snappy |
| CVE-2015-7521 | Apache Hive |
| CVE-2016-3083 | Apache Hive |
| CVE-2015-1772 | Apache Hive |
| CVE-2022-41853 | hsqldb |
| CVE-2015-8094 | Cloudera Hue |
| CVE-2021-28170 | javax.el |
| CVE-2011-4461 | Mortbay Jetty |
| CVE-2009-1523 | Mortbay Jetty |
| CVE-2023-5072 | org.json |
| CVE-2009-4611 | Mortbay Jetty |
| CVE-2009-5048 | Mortbay Jetty |
| CVE-2009-5049 | Mortbay Jetty |
| CVE-2009-4609 | Mortbay Jetty |
| CVE-2009-1524 | Mortbay Jetty |
| CVE-2009-4610 | Mortbay Jetty |
| CVE-2009-4612 | Mortbay Jetty |
| CVE-2023-0833 | Okhttp |
| CVE-2023-52428 | Nimbus-jose-jwt |
| CVE-2021-0341 | Okhttp |
| CVE-2018-11799 | Apache Oozie |
| CVE-2017-15712 | Apache Oozie |
| CVE-2024-1597 | Postgresql |
| CVE-2022-34169 | Apache Xalan |
| CVE-2022-1471 | Snakeyaml |
| CVE-2023-43642 | Snappy Java |
| CVE-2022-22965 | Spring Framework |
| CVE-2023-20860 | Spring Framework |
| CVE-2022-22950 | Spring Framework |
| CVE-2022-22971 | Spring Framework |
| CVE-2023-20861 | Spring Framework |
| CVE-2023-20863 | Spring Framework |
| CVE-2022-22968 | Spring Framework |
| CVE-2022-22970 | Spring Framework |
| CVE-2021-22060 | Spring Framework |
| CVE-2021-22096 | Spring Framework |
| CVE-2023-20862 | Spring Security |
| CVE-2024-22257 | Spring Security |
| CVE-2023-20859 | Spring Vault |
| CVE-2024-22243 | Spring Framework |
| CVE-2024-22262 | Spring Framework |
| CVE-2023-44981 | Apache Zookeeper |
| CVE-2016-5017 | Apache Zookeeper |
| CVE-2018-8012 | Apache Zookeeper |
| CVE-2019-0201 | Apache Zookeeper |
