I ran into the same findings in a Cloudera 7.x setup. For the Zookeeper TRACE/TRACK warning on port 7000, you can mitigate it by disabling these methods in the embedded Jetty config or, more commonly, by placing a reverse proxy (Apache/Nginx) in front of ZooKeeper and blocking TRACE/TRACK. For the MapReduce HSTS warning (port 13562), HSTS isn’t enabled by default. The fix is to add the Strict Transport Security header either through the service’s HTTPS response configuration or again via a reverse proxy. This enforces HTTPS and clears the scan finding. ... View more

Hello @teo123  Thank you for reaching out to the cloudera community Yes old symlinks could be a reason for this  Please try performing the steps mentioned in the following document    https://my.cloudera.com/knowledge/Broken-Alternatives-Pointing-to-Previous-CDP-Parcels--Removing?id=278605   In your case, if there are no broken symlinks, then remove the old symlinks from /etc/alternatives, and all steps will be the same Let us know if you have any queries ... View more

Hello @teo123  Yes, your understanding is correct   Please help our community grow. If you found any of the suggestions/solutions provided helped you with solving your issue or answering your question, please take a moment to login and click "Accept as Solution" on one or more of them that helped. ... View more