3 matches found
CVE-2018-11770
creationtimestamp| type| source ---|---|--- 2018-11-29 20:08:37+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/sparkunauthrce.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:03+00:00| seen|...
Security Bulletin: A security vulnerability has been identified in Apache Spark shipped with IBM Operations Analytics Predictive Insights (CVE-2018-11770)
Summary There is a vulnerability in Apache SparkĀ®, Version 2.0.1 that is used by IBM Operations Analytics Predictive Insights 1.3.6. IBM Operations Analytics Predictive Insights has addressed the applicable CVE. Vulnerability Details CVE-ID: CVE-2018-11770 Description: Apache Spark could allow a...
Apache Spark Unauthenticated Command Execution
This module exploits an unauthenticated command execution vulnerability in Apache Spark with standalone cluster mode through REST API. It uses the function CreateSubmissionRequest to submit a malious java class and trigger it. This module requires Metasploit: https://metasploit.com/download Curre...