CVE-2017-5655: Information Exposure

May 15, 2017 (updated May 23, 2017)

Sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.

References

nvd.nist.gov/vuln/detail/CVE-2017-5655

Detect and mitigate CVE-2017-5655 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →