hadoop-fips-3.3.6 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the hadoop-fips-3.3.6 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L CVE-2024-38374	<3.3.6-r1
L GHSA-683x-4444-jxh8	<3.3.6-r1
H Resource Exhaustion	<3.3.6-r0
H Incorrect Conversion between Numeric Types	<3.3.6-r0
C HTTP Request Smuggling	<3.3.6-r0
M Creation of Temporary File With Insecure Permissions	<3.3.6-r0
M HTTP Request Smuggling	<3.3.6-r0
H Resource Exhaustion	<3.3.6-r0
L Improper Privilege Management	<3.3.6-r0
M HTTP Request Smuggling	<3.3.6-r0
C HTTP Request Smuggling	<3.3.6-r0
M HTTP Request Smuggling	<3.3.6-r0
L GHSA-gw85-4gmf-m7rh	<3.3.6-r0
L GHSA-2x83-r56g-cv47	<3.3.6-r0
L GHSA-3xrr-7m6p-p7xh	<3.3.6-r0
L GHSA-fmj5-wv96-r2ch	<3.3.6-r0
L GHSA-5mh9-r3rr-9597	<3.3.6-r0
L GHSA-cfh5-3ghh-wfjx	<3.3.6-r0
L GHSA-3vrc-rrpw-r5pw	<3.3.6-r0
L GHSA-9vjp-v76f-g363	<3.3.6-r0
L GHSA-c27h-mcmw-48hv	<3.3.6-r0
C XML External Entity (XXE) Injection	<3.3.6-r0
L GHSA-grg4-wf29-r9vv	<3.3.6-r0
L GHSA-cqqj-4p63-rrmm	<3.3.6-r0
L GHSA-2x2g-32r7-p4x8	<3.3.6-r0
L GHSA-5mcr-gq6c-3hq2	<3.3.6-r0
L GHSA-f256-j965-7f32	<3.3.6-r0
L GHSA-w33c-445m-f8w7	<3.3.6-r0
L GHSA-r6j9-8759-g62w	<3.3.6-r0
L GHSA-p2v9-g2qv-p635	<3.3.6-r0
C Deserialization of Untrusted Data	<3.3.6-r0
L GHSA-wx5j-54mm-rqqq	<3.3.6-r0
L GHSA-wm47-8v5p-wjpj	<3.3.6-r0