Cloudera Manager Default Credentials

critical Nessus Plugin ID 76258

Synopsis

A web application is protected using default credentials.

Description

The Cloudera Manager web application running on the remote web server uses default credentials for the administrator account. An attacker can exploit this to gain administrative access to the application.

Solution

Log in and change the password for the 'admin' user.

Plugin Details

Severity: Critical

ID: 76258

File Name: cloudera_manager_default_creds.nasl

Version: 1.6

Type: remote

Family: CGI abuses

Published: 6/26/2014

Updated: 1/19/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:cloudera:cloudera_manager

Required KB Items: installed_sw/Cloudera Manager

Excluded KB Items: global_settings/supplied_logins_only