Lucene search
China National Vulnerability DatabaseCNVD-2024-17937HistoryApr 11, 2024 - 12:00 a.m.
Apache Zeppelin Input Validation Error Vulnerability (CNVD-2024-17937)
2024-04-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
apache zeppelin
web-based application
open source
data analysis
collaborative documentation
input validation error
exploit
ldap
search filter
Apache Zeppelin is a Web-based open source laptop application from the Apache (USA) Foundation. The program supports interactive data analysis and collaborative documentation. Apache Zeppelin suffers from an input validation error vulnerability that can be exploited by an attacker to execute a malicious query by setting incorrect configuration attributes via an LDAP search filter.
Related
nvd
nvd
CVE-2024-31867
2024-04-09 17:16:03
veracode
veracode
Improper Input Validation
2024-04-12 15:08:26
github
github
Apache Zeppelin: LDAP search filter query Injection Vulnerability
2024-04-09 18:30:28
vulnrichment
vulnrichment
cvelist
cvelist
osv
osv
Apache Zeppelin: LDAP search filter query Injection Vulnerability
2024-04-09 18:30:28
cve
cve
CVE-2024-31867
2024-04-09 17:16:03