【安全风险通告】Apache Hadoop Yarn RPC未授权访问漏洞安全风险通告
Hadoop Yarn RPC未授权RCE(含一键利用工具)
GHSL-2022-012: Arbitrary file write during TAR extraction in Apache Hadoop - CVE-2022-26612
org.apache.hadoop.yarn.util.resource.ResourceUtils
docker pull kpli0rn/hadoop-rpc-vuln:3.3.0
docker run -d --name yarn -p 8042:8042 -p 8032:8032 kpli0rn/hadoop-rpc-vuln:3.3.0