Primary

Context

Apache Ambari Remote Code Injection Vulnerability in Metrics and AMS Alerts

Vulnerability

Patched

A remote code injection vulnerability has been identified in Apache Ambari versions through 2.7.8, specifically within the Ambari Metrics and AMS Alerts feature. This vulnerability allows authenticated users to inject and execute arbitrary code by exploiting the alert definitions process. Malicious input can be inserted into the execution path of alert scripts, enabling an attacker with authenticated access to execute commands on the server.

Impact

Exploitation of this vulnerability allows for remote code execution on the server.

Remediation

The vulnerability has been fixed in the latest versions of Apache Ambari.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

10.0

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

10.0

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache Ambari Remote Code Injection Vulnerability in Metrics and AMS Alerts

Vulnerability

Impact

Remediation

Affected Products

Apache Ambari

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating