We found results for “


Good to know:


Date: April 12, 2016

Http server in Apache Hadoop versions 2.2.0 to 2.7.7, 2.8.1 to 3.0.0-alpha1 are vulnerable to clickjacking by setting an X-Frame-Options response header in all content responses.

Language: Java

Severity Score

Severity Score

Top Fix


Upgrade Version

Upgrade to version release-2.8.0, release-3.0.0-alpha1

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privilegs Required (PR): NONE
User Interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): LOW

Do you need more information?

Contact Us