Improper Privilege Management
Apache Hadoop blocks users or grants access to users incorrectly, if the system uses non-default groups mapping mechanisms.
Advisories for Maven/Org.apache.hadoop/Hadoop-Kms package
2019
2018
Information Exposure
The YARN NodeManager in Apache Hadoop can leak the password for credential store provider used by the NodeManager to YARN Applications.