Lucene search
GoogleOSV:CVE-2020-13929HistorySep 02, 2021 - 5:15 p.m.
CVE-2020-13929
2021-09-0217:15:07
Google
osv.dev
1
0.002 Low
EPSS
Percentile
61.1%
Authentication bypass vulnerability in Apache Zeppelin allows an attacker to bypass Zeppelin authentication mechanism to act as another user. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zeppelin | eq | 0.9.0-docker |
References
www.openwall.com/lists/oss-security/2021/09/02/2
lists.apache.org/thread.html/r768800925d6407a6a87ccae0ec98776b7bda50c0e3ed3d0130dad028%40%3Cannounce.apache.org%3E
lists.apache.org/thread.html/r768800925d6407a6a87ccae0ec98776b7bda50c0e3ed3d0130dad028%40%3Cusers.zeppelin.apache.org%3E
lists.apache.org/thread.html/r99529e175a7c1c9a26bd41a02802c8af7aa97319fe561874627eb999%40%3Cusers.zeppelin.apache.org%3E
security.gentoo.org/glsa/202311-04
Related
nvd
nvd
CVE-2020-13929
2021-09-02 17:15:07
cve
cve
CVE-2020-13929
2021-09-02 17:15:07
cnvd
cnvd
Apache Zeppelin Authentication Bypass Vulnerability
2021-09-04 00:00:00
osv
osv
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
prion
prion
Authentication flaw
2021-09-02 17:15:00
cvelist
cvelist
CVE-2020-13929 Notebook permissions bypass
2021-09-02 00:00:00
veracode
veracode
Privilege Escalation
2021-09-03 02:52:13
github
github
Authentication bypass in Apache Zeppelin
2021-09-07 22:56:56
gentoo
gentoo
Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00
nessus
nessus
GLSA-202311-04 : Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00