Lucene search
ApacheCVELIST:CVE-2020-13929HistorySep 02, 2021 - 12:00 a.m.
CVE-2020-13929 Notebook permissions bypass
2021-09-0200:00:00
apache
www.cve.org
Authentication bypass vulnerability in Apache Zeppelin allows an attacker to bypass Zeppelin authentication mechanism to act as another user. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.
CNA Affected
[
{
"vendor": "Apache Software Foundation",
"product": "Apache Zeppelin",
"versions": [
{
"version": "Apache Zeppelin",
"status": "affected",
"lessThanOrEqual": "0.9.0",
"versionType": "custom"
}
]
}
]References
www.openwall.com/lists/oss-security/2021/09/02/2
lists.apache.org/thread.html/r768800925d6407a6a87ccae0ec98776b7bda50c0e3ed3d0130dad028%40%3Cannounce.apache.org%3E
lists.apache.org/thread.html/r768800925d6407a6a87ccae0ec98776b7bda50c0e3ed3d0130dad028%40%3Cusers.zeppelin.apache.org%3E
lists.apache.org/thread.html/r99529e175a7c1c9a26bd41a02802c8af7aa97319fe561874627eb999%40%3Cusers.zeppelin.apache.org%3E
security.gentoo.org/glsa/202311-04
Related
nvd
nvd
CVE-2020-13929
2021-09-02 17:15:07
cve
cve
CVE-2020-13929
2021-09-02 17:15:07
cnvd
cnvd
Apache Zeppelin Authentication Bypass Vulnerability
2021-09-04 00:00:00
osv
osv
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
CVE-2020-13929
2021-09-02 17:15:07
prion
prion
Authentication flaw
2021-09-02 17:15:00
veracode
veracode
Privilege Escalation
2021-09-03 02:52:13
github
github
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
gentoo
gentoo
Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00
nessus
nessus
GLSA-202311-04 : Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00