Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.hadoop/hadoop-client@1.0.3
purl pkg:maven/org.apache.hadoop/hadoop-client@1.0.3
Next non-vulnerable version 2.7.0
Latest non-vulnerable version 2.7.0
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-1jer-fvap-a3et
Aliases:
CVE-2017-3162
GHSA-pr9x-qmp5-j3rr
Improper Input Validation HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace
2.7.0
Affected by 0 other vulnerabilities.
VCID-417a-z2w6-s3bq
Aliases:
CVE-2012-4449
GHSA-q46v-cj5v-hvg6
Use of a Broken or Risky Cryptographic Algorithm in Apache Hadoop Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-dependent attackers to crack secret keys via a brute-force attack.
1.0.4
Affected by 2 other vulnerabilities.
2.0.2
Affected by 0 other vulnerabilities.
2.0.3-alpha
Affected by 3 other vulnerabilities.
VCID-teju-geqm-j7cy
Aliases:
CVE-2017-3161
GHSA-qm7f-r83w-3p46
Cross-site Scripting The HDFS web UI in Apache Hadoop is vulnerable to a cross-site scripting (XSS) attack through an unescaped query parameter.
2.7.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:54:38.246123+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.4.0
2026-04-16T21:48:18.624159+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.4.0
2026-04-16T21:47:11.831512+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.4.0
2026-04-11T23:09:56.386713+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.3.0
2026-04-11T23:04:12.030972+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.3.0
2026-04-11T23:03:00.969301+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.3.0
2026-04-02T23:18:40.807958+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.1.0
2026-04-02T23:12:33.597521+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.1.0
2026-04-02T23:11:24.930188+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.1.0
2026-04-01T17:39:01.948851+00:00 GitLab Importer Affected by VCID-417a-z2w6-s3bq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2012-4449.yml 38.0.0
2026-04-01T17:32:29.258908+00:00 GitLab Importer Affected by VCID-1jer-fvap-a3et https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3162.yml 38.0.0
2026-04-01T17:31:16.493877+00:00 GitLab Importer Affected by VCID-teju-geqm-j7cy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.hadoop/hadoop-client/CVE-2017-3161.yml 38.0.0