1. A concise explanation of the problem you're experiencing.
We scanned 1.36 version of cesium using Black Duck software and it has Cloudera CDH
Description - Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization. 2017-04-14T15:42:15.643Z 2017-04-14T16:43:04.983Z - Vulnerability id #CVE-2016-6605
2. A minimal code example. If you've found a bug, this helps us reproduce and repair it.
Can we upgrade the Cloudera CDH to higher version?