Lucene search

CVE-2022-31777 Apache Spark XSS vulnerability in log viewer UI Javascript

🗓️ 01 Nov 2022 00:00:00Reported by apacheType

CVE-2022-31777 Apache Spark XSS vulnerability in log viewer UI Javascrip

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 17
RedhatCVE	CVE-2022-31777	23 Nov 202216:56	–	redhatcve
OSV	Apache Spark vulnerable to Log Injection	1 Nov 202219:00	–	osv
OSV	CVE-2022-31777	1 Nov 202216:15	–	osv
OSV	PYSEC-2022-42976	1 Nov 202216:15	–	osv
OSV	BIT-spark-2022-31777	6 Mar 202411:05	–	osv
Prion	Cross site scripting	1 Nov 202216:15	–	prion
Veracode	Cross-site Scripting (XSS)	2 Nov 202202:13	–	veracode
CNVD	Apache Spark Injection Vulnerability	3 Nov 202200:00	–	cnvd
Tenable Nessus	Apache Spark < 3.2.2 / 3.3.0 < 3.3.1 XSS (CVE-2022-31777)	4 Oct 202300:00	–	nessus
Tenable Nessus	Oracle Business Intelligence Enterprise Edition (OAS) (July 2023 CPU)	21 Jul 202300:00	–	nessus

[
  {
    "product": "Apache Spark",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "3.3.0"
      },
      {
        "lessThanOrEqual": "3.2.1",
        "status": "affected",
        "version": "3.2.1 and earlier",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q
openwall	www.openwall.com/lists/oss-security/2022/11/01/14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Nov 2022 00:00Current

5.7Medium risk

Vulners AI Score5.7

EPSS0.00245

CWE-74