Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-6MQQ-8R44-VMJC
HistoryMar 14, 2019 - 3:41 p.m.

Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark

2019-03-1415:41:04
Google
osv.dev
13

EPSS

0

Percentile

5.1%

JSON

In Apache Spark 1.0.0 to 2.1.2, 2.2.0 to 2.2.1, and 2.3.0, when using PySpark or SparkR, it’s possible for a different local user to connect to the Spark application and impersonate the user running the Spark application.

Related

cve 1
veracode 1
cvelist 1
nvd 1
github 1
osv 2
prion 1
ibm 1
cve
cve
CVE-2018-1334
2018-07-12 13:29:00
veracode
veracode
Local Privilege Escalation
2018-07-13 03:55:52
cvelist
cvelist
CVE-2018-1334
2018-07-11 00:00:00
nvd
nvd
CVE-2018-1334
2018-07-12 13:29:00
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark
2019-03-14 15:41:04
osv
osv
PYSEC-2018-25
2018-07-12 13:29:00
CVE-2018-1334
2018-07-12 13:29:00
prion
prion
Code injection
2018-07-12 13:29:00
ibm
ibm
Security Bulletin: Vulnerabilities in Apache Spark affect IBM Operations Analytics Predictive Insights (CVE-2018-8024, CVE-2018-1334)
2018-11-07 05:10:01

EPSS

0

Percentile

5.1%

JSON
Related for OSV:GHSA-6MQQ-8R44-VMJC
cve1veracode1cvelist1nvd1github1osv2prion1ibm1