Status
Impact
This vulnerability exists in ambari-metrics-common-2.7.0.0.0 which is bundled/shaded inside ambari-metrics-emitter extension. As a pre-built binary artifact, the embedded dependencies cannot be updated independently. This requires a new upstream release of Apache Metrics Emitter with updated bundled dependencies.
Status