CVE-2022-46870

🗓️ 16 Dec 2022 13:09:15Reported by [email protected]Type

Improper input neutralization in Apache Zeppelin allows cross-site scriptin

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
OSV	CVE-2022-46870	16 Dec 202213:15	–	osv
OSV	GHSA-9P8J-HRGF-JC2G Apache Zeppelin Cross-site Scripting vulnerability	20 Dec 202221:30	–	osv
CNVD	Apache Zeppelin Cross-Site Scripting Vulnerability (CNVD-2022-89420)	20 Dec 202200:00	–	cnvd
Cvelist	CVE-2022-46870 Apache Zeppelin: Stored XSS in note permissions	16 Dec 202212:55	–	cvelist
CVE	CVE-2022-46870	16 Dec 202213:15	–	cve
Prion	Cross site scripting	16 Dec 202213:15	–	prion
Veracode	Cross-site Scripting (XSS)	19 Dec 202204:31	–	veracode
Vulnrichment	CVE-2022-46870 Apache Zeppelin: Stored XSS in note permissions	16 Dec 202212:55	–	vulnrichment
Github Security Blog	Apache Zeppelin Cross-site Scripting vulnerability	20 Dec 202221:30	–	github

Nvd

Node

apache zeppelinRange<0.8.2

Source	Link
lists	www.lists.apache.org/thread/gb1wdnrm1095xw6qznpsycfrht4lwbwc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Dec 2022 13:15Current

CVSS35.4

EPSS0.02132

CWE-79