Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.hadoop/hadoop-client@0.23.7
purl pkg:maven/org.apache.hadoop/hadoop-client@0.23.7
Next non-vulnerable version 2.7.0
Latest non-vulnerable version 2.7.0
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-1jer-fvap-a3et
Aliases:
CVE-2017-3162
GHSA-pr9x-qmp5-j3rr
Improper Input Validation HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace
2.7.0
Affected by 0 other vulnerabilities.
VCID-s1ru-ts2c-ubf5
Aliases:
CVE-2014-3627
GHSA-jpmf-8cj2-595g
Improper Link Resolution Before File Access in Apache Hadoop The YARN NodeManager daemon in Apache Hadoop 0.23.0 through 0.23.11 and 2.x before 2.5.2, when using Kerberos authentication, allows remote cluster users to change the permissions of certain files to world-readable via a symlink attack in a public tar archive, which is not properly handled during localization, related to distributed cache.
1.0.1
Affected by 3 other vulnerabilities.
2.5.2
Affected by 2 other vulnerabilities.
VCID-teju-geqm-j7cy
Aliases:
CVE-2017-3161
GHSA-qm7f-r83w-3p46
Cross-site Scripting The HDFS web UI in Apache Hadoop is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.
2.7.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:53:23.941640+00:00 GitLab Importer Affected by VCID-s1ru-ts2c-ubf5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2014-3627.yml 38.4.0
2026-04-16T21:48:18.599429+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.4.0
2026-04-16T21:47:11.807142+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.4.0
2026-04-11T23:08:53.939129+00:00 GitLab Importer Affected by VCID-s1ru-ts2c-ubf5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2014-3627.yml 38.3.0
2026-04-11T23:04:12.005374+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.3.0
2026-04-11T23:03:00.939430+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.3.0
2026-04-02T23:17:33.172193+00:00 GitLab Importer Affected by VCID-s1ru-ts2c-ubf5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2014-3627.yml 38.1.0
2026-04-02T23:12:33.574604+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.1.0
2026-04-02T23:11:24.906901+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.1.0
2026-04-01T17:37:44.895801+00:00 GitLab Importer Affected by VCID-s1ru-ts2c-ubf5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2014-3627.yml 38.0.0
2026-04-01T17:32:29.232965+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.0.0
2026-04-01T17:31:16.462014+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.0.0