Full title: Apache Hadoop DataNode Missed Validation Vulnerability 
Category: remote exploits
Platform: multiple
HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace. The NameNode is provided as a query parameter that is not validated. Apache Hadoop versions 2.6.x and earlier are affected.

# 0day.today @ http://0day.today/