Unauthorized Access Vulnerability in Hadoop YARN Resourcemanager
Vulnerability Description
The ResourceManager component, responsible for managing and scheduling resources, has an open UI management interface on port 8080/8088, and the attacker can deploy tasks through the REST API without authentication, ultimately able to fully control all machines in the cluster by executing any command.
Environment Setup
Using vulhub
Access the 8088 port, you can see the Hadoop YARN ResourceManager WebUI interface.
访问8088端口,可以看到Hadoop YARN ResourceManager WebUI界面。
Vulnerability Exploitation
Start nc
Attack script
Successful attack succeeded
PreviousUnauthorized Access Vulnerability in Druid Monitoring PageNextUnauthorized Access Vulnerability in Hadoop Yarn RPC
Last updated