Lucene search
China National Vulnerability DatabaseCNVD-2023-02477HistoryDec 20, 2022 - 12:00 a.m.
Apache Zeppelin input validation error vulnerability
2022-12-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
apache zeppelin
input validation
vulnerability
move folder
trash
exploit
delete files
apache foundation
web-based
open source
notebook application
data analysis
collaborative documentation
improper input validation
arbitrary files
cnvd
EPSS
0.002
Percentile
53.1%
Apache Zeppelin is a Web-based open source notebook application from the Apache Foundation that supports interactive data analysis and collaborative documentation. Apache Zeppelin is vulnerable to an input validation error that results from improper input validation in its Move folder to Trash feature, which can be exploited to delete arbitrary files.
Related
osv
osv
Apache Zeppelin Improper Input Validation vulnerability
2023-07-06 19:24:05
CVE-2021-28655
2022-12-16 13:15:08
cvelist
cvelist
CVE-2021-28655 Apache Zeppelin: Arbitrary file deletion vulnerability
2022-12-16 12:51:51
prion
prion
Input validation
2022-12-16 13:15:00
github
github
Apache Zeppelin Improper Input Validation vulnerability
2023-07-06 19:24:05
nvd
nvd
CVE-2021-28655
2022-12-16 13:15:08
veracode
veracode
Arbitrary File Deletion
2022-12-19 01:14:46
cve
cve
CVE-2021-28655
2022-12-16 13:15:08