Lucene search
GoogleOSV:CVE-2021-27578HistorySep 02, 2021 - 5:15 p.m.
CVE-2021-27578
2021-09-0217:15:08
Google
osv.dev
2
0.006 Low
EPSS
Percentile
78.9%
Cross Site Scripting vulnerability in markdown interpreter of Apache Zeppelin allows an attacker to inject malicious scripts. This issue affects Apache Zeppelin Apache Zeppelin versions prior to 0.9.0.
References
www.openwall.com/lists/oss-security/2021/09/02/3
lists.apache.org/thread.html/r31012f2c8e39a5e12e14c1de030012cb8b51c037d953d73b291b7b50%40%3Cusers.zeppelin.apache.org%3E
lists.apache.org/thread.html/r90590aa5ea788128ecc2e822e1e64d5200b4cb92b06707b38da4cb3d%40%3Cannounce.apache.org%3E
lists.apache.org/thread.html/r90590aa5ea788128ecc2e822e1e64d5200b4cb92b06707b38da4cb3d%40%3Cusers.zeppelin.apache.org%3E
security.gentoo.org/glsa/202311-04
Related
cve
cve
CVE-2021-27578
2021-09-02 17:15:08
osv
osv
Cross-site Scripting in Apache Zeppelin
2021-09-07 22:55:56
cnvd
cnvd
Apache Zeppelin Cross-Site Scripting Vulnerability
2021-09-03 00:00:00
prion
prion
Cross site scripting
2021-09-02 17:15:00
cvelist
cvelist
CVE-2021-27578 Cross Site Scripting in markdown interpreter
2021-09-02 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2021-09-08 08:42:36
nvd
nvd
CVE-2021-27578
2021-09-02 17:15:08
github
github
Cross-site Scripting in Apache Zeppelin
2021-09-07 22:55:56
gentoo
gentoo
Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00
nessus
nessus
GLSA-202311-04 : Zeppelin: Multiple Vulnerabilities
2023-11-24 00:00:00