Lucene search
GoogleOSV:CVE-2019-10095HistorySep 02, 2021 - 5:15 p.m.
CVE-2019-10095
2021-09-0217:15:07
Google
osv.dev
4
bash command injection vulnerability in Apache Zeppelin allows an attacker to inject system commands into Spark interpreter settings. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zeppelin | eq | 0.9.0-docker |
References
www.openwall.com/lists/oss-security/2021/09/02/1
lists.apache.org/thread.html/rd56389ba9cab30a6c976b9a4a6df0f85cbe8fba6a60a3cf6e3ba716b%40%3Cusers.zeppelin.apache.org%3E
lists.apache.org/thread.html/rdf06e8423833b3daadc30c56a2ff47c48920864d5199476daa897208%40%3Cannounce.apache.org%3E
lists.apache.org/thread.html/rdf06e8423833b3daadc30c56a2ff47c48920864d5199476daa897208%40%3Cusers.zeppelin.apache.org%3E
security.gentoo.org/glsa/202311-04
Related
cnvd
cnvd
Apache Zeppelin Command Injection Vulnerability
2021-09-03 00:00:00
osv
osv
Bash command injection in Apache Zeppelin
2021-09-07 22:56:43
cvelist
cvelist
CVE-2019-10095 bash command injection in spark interpreter
2021-09-02 00:00:00
cve
cve
CVE-2019-10095
2021-09-02 17:15:07
prion
prion
Command injection
2021-09-02 17:15:00
veracode
veracode
OS Command Injection
2021-09-03 02:34:56
github
github
Bash command injection in Apache Zeppelin
2021-09-07 22:56:43
nvd
nvd
CVE-2019-10095
2021-09-02 17:15:07
nessus
nessus
GLSA-202311-04 : Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00
gentoo
gentoo
Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00