Every CVE whose affected-product data names Cloudera Hue, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2025-3884 — CVSS 7.5 (high): Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose…
CVE-2015-8094 — CVSS 6.1 (medium): Open redirect vulnerability in Cloudera HUE before 3.10.0 allows remote attackers to redirect users to arbitrary web sites and conduct…
CVE-2016-4946 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Cloudera HUE 3.9.0 and earlier allow remote attackers to inject arbitrary web script…
CVE-2016-4947 — CVSS 5.3 (medium): Cloudera HUE 3.9.0 and earlier allows remote attackers to enumerate user accounts via a request to desktop/api/users/autocomplete.