CVE-2022-25168: Apache Hadoop Command Injection Vulnerability

Comments Off on CVE-2022-25168: Apache Hadoop Command Injection Vulnerability
CVE-2022-25168: Apache Hadoop Command Injection Vulnerability

Recently, Apache Hadoop fixed a command injection vulnerability. Since Apache Hadoop’s FileUtil.unTar API does not escape the input filename before passing it to the shell, an attacker could exploit this vulnerability to inject arbitrary...

The post CVE-2022-25168: Apache Hadoop Command Injection Vulnerability appeared first on Penetration Testing.

Related Articles

ABOUT US

Haxf4rall is a collective, a good starting point and provides a variety of quality material for cyber security professionals.

Our primary focus revolves around the latest tools released in the Infosec community and provide a platform for developers to showcase their skillset and current projects.

COMPANY
Live Chat
RESOURCES
Get Started
TOOLBOX
Tools Directory

2014 – 2020 | Haxf4rall.com               Stay Connected:

Facebook Twitter Google-plus Wordpress