Detections
Analytics
Cloudera Manager Default Credentials
critical Nessus Plugin ID 76258
Language:
Synopsis
A web application is protected using default credentials.Description
The Cloudera Manager web application running on the remote web server uses default credentials for the administrator account. An attacker can exploit this to gain administrative access to the application.Solution
Log in and change the password for the 'admin' user.Plugin Details
Severity: Critical
ID: 76258
File Name: cloudera_manager_default_creds.nasl
Version: 1.6
Type: remote
Family: CGI abuses
Published: 6/26/2014
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:cloudera:cloudera_manager
Required KB Items: installed_sw/Cloudera Manager
Excluded KB Items: global_settings/supplied_logins_only