CVE-2017-12619

2019-04-23T15:29:00
ID CVE-2017-12619
Type cve
Reporter cve@mitre.org
Modified 2019-04-30T14:54:00

Description

Apache Zeppelin prior to 0.7.3 was vulnerable to session fixation which allowed an attacker to hijack a valid user session. Issue was reported by "stone lone".