CVE-2016-4976 - Vulnerability Details

Vendors	Products
Apache	Ambari

Link	Providers
http://www.securityfocus.com/bid/97229
https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-08-15T00:00:00", "descriptions": [{"lang": "en", "value": "Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-03-31T09:57:02", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0"}, {"name": "97229", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/97229"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2016-4976", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0", "refsource": "CONFIRM", "url": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0"}, {"name": "97229", "refsource": "BID", "url": "http://www.securityfocus.com/bid/97229"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T00:46:39.944Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0"}, {"name": "97229", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/97229"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-4976", "datePublished": "2017-03-29T20:00:00", "dateReserved": "2016-05-24T00:00:00", "dateUpdated": "2024-08-06T00:46:39.944Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2016-08-15T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-03-31T09:57:02 (string)

orgId : 53f830b8-0a3f-465b-8143-3b8a9948e749 (string)

shortName : redhat (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

}

1 : { »

name : 97229 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/97229 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : secalert@redhat.com (string)

ID : CVE-2016-4976 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

refsource : CONFIRM (string)

url : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

}

1 : { »

name : 97229 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/97229 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T00:46:39.944Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

}

1 : { »

name : 97229 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/97229 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 53f830b8-0a3f-465b-8143-3b8a9948e749 (string)

assignerShortName : redhat (string)

cveId : CVE-2016-4976 (string)

datePublished : 2017-03-29T20:00:00 (string)

dateReserved : 2016-05-24T00:00:00 (string)

dateUpdated : 2024-08-06T00:46:39.944Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:ambari:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "3394B0FD-5DD2-434B-8E83-429CE2B9E1DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "96ECE226-03F0-4C10-972D-96EFE28A67EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "78F087FC-ED5F-4F68-9CEA-C8FA11B66B32", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "3D5FA9F4-80F6-4990-A9DA-CC3820C66DB0", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "82A24155-1163-4A91-996B-D35DA1E3BCBF", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "C3AE4192-0CAE-4017-B817-913131AB1C30", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "762A15F7-0939-43B9-96EB-92654B7772EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "8C45764B-3E1F-420A-9B0D-FAF5DACF30A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ambari:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "40ED1582-73DA-4CFE-9B2A-765A464FB205", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing."}, {"lang": "es", "value": "Apache Ambari 2.x en versiones anteriores a 2.4.0 incluye contrase\u00f1as de administrador de KDC en la l\u00ednea de comandos de kadmin, lo que permite a usuarios locales obtener informaci\u00f3n sensible a trav\u00e9s de una lista de procesos."}], "id": "CVE-2016-4976", "lastModified": "2024-11-21T02:53:20.847", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-03-29T20:59:00.247", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/97229"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/97229"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:apache:ambari:2.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 3394B0FD-5DD2-434B-8E83-429CE2B9E1DF (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:apache:ambari:2.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 96ECE226-03F0-4C10-972D-96EFE28A67EA (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:apache:ambari:2.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 78F087FC-ED5F-4F68-9CEA-C8FA11B66B32 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:apache:ambari:2.1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 3D5FA9F4-80F6-4990-A9DA-CC3820C66DB0 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:apache:ambari:2.1.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 82A24155-1163-4A91-996B-D35DA1E3BCBF (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:apache:ambari:2.1.2:*:*:*:*:*:*:* (string)

matchCriteriaId : C3AE4192-0CAE-4017-B817-913131AB1C30 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:apache:ambari:2.2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 762A15F7-0939-43B9-96EB-92654B7772EE (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:apache:ambari:2.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 8C45764B-3E1F-420A-9B0D-FAF5DACF30A6 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:apache:ambari:2.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 40ED1582-73DA-4CFE-9B2A-765A464FB205 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Apache Ambari 2.x before 2.4.0 includes KDC administrator passwords on the kadmin command line, which allows local users to obtain sensitive information via a process listing. (string)

}

1 : { »

lang : es (string)

value : Apache Ambari 2.x en versiones anteriores a 2.4.0 incluye contraseñas de administrador de KDC en la línea de comandos de kadmin, lo que permite a usuarios locales obtener información sensible a través de una lista de procesos. (string)

}

]

id : CVE-2016-4976 (string)

lastModified : 2024-11-21T02:53:20.847 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : LOW (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 2.1 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:L/AC:L/Au:N/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : LOCAL (string)

availabilityImpact : NONE (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.0 (string)

}

exploitabilityScore : 1.8 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2017-03-29T20:59:00.247 (string)

references : [ »

0 : { »

source : secalert@redhat.com (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securityfocus.com/bid/97229 (string)

}

1 : { »

source : secalert@redhat.com (string)

tags : [ »

0 : Issue Tracking (string)

1 : Third Party Advisory (string)

]

url : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

}

2 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securityfocus.com/bid/97229 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Issue Tracking (string)

1 : Third Party Advisory (string)

]

url : https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.4.0 (string)

}

]

sourceIdentifier : secalert@redhat.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-200 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object