Apache Ambari Security Update Advisory

Jan 24 2025

Overview

We have released a security update to address a vulnerability in Apache Ambari. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-23195, CVE-2025-23196

Apache Ambari version: ~ 2.7.9 (excluded)

Resolved Vulnerabilities

XML External Entity Vulnerability (CVE-2025-23195)
code Injection Vulnerability (CVE-2025-23196)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-23195, CVE-2025-23196

Apache Ambari version: 2.7.9

References

[1] cve-2025-23195
https://www.cve.org/CVERecord?id=CVE-2025-23195
[2] cve-2025-23196
https://www.cve.org/CVERecord?id=CVE-2025-23196

Apache Ambari Security Update Advisory

Oracle Family January 2025 Security Update Advisory

Google Chrome Browser (132.0.6834.110/111) Security Update Advisory

Tags:

Oracle Family January 2025 Security Update Advisory

Google Chrome Browser (132.0.6834.110/111) Security Update Advisory