Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.hadoop/hadoop-client@1.0.2
purl pkg:maven/org.apache.hadoop/hadoop-client@1.0.2
Next non-vulnerable version 2.7.0
Latest non-vulnerable version 2.7.0
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-1jer-fvap-a3et
Aliases:
CVE-2017-3162
GHSA-pr9x-qmp5-j3rr
Improper Input Validation HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace
2.7.0
Affected by 0 other vulnerabilities.
VCID-417a-z2w6-s3bq
Aliases:
CVE-2012-4449
GHSA-q46v-cj5v-hvg6
Use of a Broken or Risky Cryptographic Algorithm in Apache Hadoop Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-dependent attackers to crack secret keys via a brute-force attack.
1.0.4
Affected by 2 other vulnerabilities.
2.0.2
Affected by 0 other vulnerabilities.
2.0.3-alpha
Affected by 3 other vulnerabilities.
VCID-teju-geqm-j7cy
Aliases:
CVE-2017-3161
GHSA-qm7f-r83w-3p46
Cross-site Scripting The HDFS web UI in Apache Hadoop is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.
2.7.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:54:38.242711+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.4.0
2026-04-16T21:48:18.620678+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.4.0
2026-04-16T21:47:11.828116+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.4.0
2026-04-11T23:09:56.383205+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.3.0
2026-04-11T23:04:12.027230+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.3.0
2026-04-11T23:03:00.965153+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.3.0
2026-04-02T23:18:40.804727+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.1.0
2026-04-02T23:12:33.594263+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.1.0
2026-04-02T23:11:24.926807+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.1.0
2026-04-01T17:39:01.944836+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.0.0
2026-04-01T17:32:29.255366+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.0.0
2026-04-01T17:31:16.489026+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.0.0