Lucene search
China National Vulnerability DatabaseCNVD-2021-70119HistorySep 04, 2021 - 12:00 a.m.
Apache Zeppelin Authentication Bypass Vulnerability
2021-09-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.002 Low
EPSS
Percentile
61.1%
Apache Zeppelin is a Web-based open source notebook application from the Apache Foundation that supports interactive data analysis and collaborative documentation. The program supports interactive data analysis and collaborative documentation. Apache Zeppelin 0.9.0 and earlier versions contain a security vulnerability that could be exploited by attackers to bypass the Zeppelin authentication mechanism in order to impersonate other users.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache apache zeppelin | le | 0.9.0 |
Related
nvd
nvd
CVE-2020-13929
2021-09-02 17:15:07
osv
osv
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
CVE-2020-13929
2021-09-02 17:15:07
cve
cve
CVE-2020-13929
2021-09-02 17:15:07
prion
prion
Authentication flaw
2021-09-02 17:15:00
cvelist
cvelist
CVE-2020-13929 Notebook permissions bypass
2021-09-02 00:00:00
veracode
veracode
Privilege Escalation
2021-09-03 02:52:13
github
github
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
gentoo
gentoo
Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00
nessus
nessus
GLSA-202311-04 : Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00