Apache Zeppelin is a Web-based open source notebook application from the Apache Foundation. The application supports interactive data analysis and collaborative documentation. Apache Zeppelin 0.9.0 and earlier versions contain a command injection vulnerability that could be exploited by an attacker to inject system commands into Spark interpreter settings.
CPE | Name | Operator | Version |
---|---|---|---|
apache apache zeppelin | le | 0.9.0 |