CVE-2013-2193

medium Apache
CVSS v3 Base Score
4.3
AV:A/AC:H/Au:N/C:P/I:P/A:P
EPSS Score
0.2%
Exploitation probability in 30 days
Top 64% most likely to be exploited
Attack Characteristics
Attack Vector
Adjacent
Attack Complexity
High
Confidentiality
P
Integrity
P
Availability
P
Published: May 29, 2014 (4368 days ago)
Last Modified: May 6, 2026
Vendor: Apache
Source: NVD

Description

Apache HBase 0.92.x before 0.92.3 and 0.94.x before 0.94.9, when the Kerberos features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via unspecified vectors.

CWE

CWE-287

Affected Products

apache hbase

References

🔗 osvdb.org 🔗 seclists.org 🔗 www.cloudera.com 🔗 osvdb.org 🔗 seclists.org