← back
CVE-2017-7669

CVE-2017-7669

EPSS 1.8%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
02 Jun 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In Apache Hadoop 2.8.0, 3.0.0-alpha1, and 3.0.0-alpha2, the LinuxContainerExecutor runs docker commands as root with insufficient input validation. When the docker feature is enabled, authenticated users can run commands as root.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →