CVE-2018-8003: Path Traversal

May 3, 2018 (updated June 13, 2018)

Apache Ambari is susceptible to a directory traversal attack allowing an unauthenticated user to craft an HTTP request which provides read-only access to any file on the filesystem.

References

www.securityfocus.com/bid/104161
cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities
nvd.nist.gov/vuln/detail/CVE-2018-8003

Detect and mitigate CVE-2018-8003 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →