CVE-2023-50379

Name of the Vulnerable Software and Affected Versions Apache Ambari versions prior to 2.7.8

Description The issue allows a Cluster Operator to manipulate the request by adding a malicious code injection, potentially gaining root access over the cluster main host. This presents a severe risk to organizations relying on Ambari for their Hadoop cluster management. The vulnerability enables authenticated users to perform command injection, leading to remote code execution (RCE).

Recommendations For Apache Ambari versions prior to 2.7.8, upgrade to version 2.7.8 to fix the issue. As a temporary workaround, consider restricting access to the cluster main host and limiting the privileges of Cluster Operators to minimize the risk of exploitation.