5 matches found
ai.grakn:client-java (=1.3.0), ai.grakn:grakn-bootup (>=1.1.0 <=v1.1.0-226-g847ecff2d8e26f249422247d7665fe15f07b1744) +565 more potentially affected by CVE-2018-11804 via org.apache.spark:spark-core_2.10 (>=1.3.0 <=2.1.3)
org.apache.spark:spark-core2.10 MAVEN version =1.3.0, =1.1.0, =0.7.0, =0.12.0, =1.2.0, =0.12.0, =1.0.0, =1.0.0, =0.10.0, =0.15.0, =0.6.1, =0.17.0, =1.1.0 and more Source cves: CVE-2018-11804 Source advisory: OSV:GHSA-62G2-M955-V383https://vulners.com/osv/OSV:GHSA-62G2-M955-V3...
ae.teletronics.nlp:entityextraction (=1.3), ae.teletronics.nlp:w2vec (=1.0) +640 more potentially affected by CVE-2018-11804 via org.apache.spark:spark-core_2.11 (>=1.3.0 <=2.1.3)
org.apache.spark:spark-core2.11 MAVEN version =1.3.0, =2.0.0, =2.0.0, =2.0.0, =2.0.18, =2.0.0, =1.0.0, =0.5.2, =1.0, =2.11-2.1.1-2.2.0, =4.2.0, =5.1.0, =5.1.2 and more Source cves: CVE-2018-11804 Source advisory: OSV:GHSA-62G2-M955-V383...
Security Bulletin: Multiple Vulnerabilities in Apache Spark affects IBM Watson Studio Local
Summary Security Bulletin: Multiple Vulnerabilities in Apache Spark affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2018-11804 DESCRIPTION: Spark's Apache Maven-based build includes a convenience script, 'build/mvn', that downloads and runs a zinc server to speed up compilation. ...
CVE-2018-11804
Spark's Apache Maven-based build includes a convenience script, 'build/mvn', that downloads and runs a zinc server to speed up compilation. It has been included in release branches since 1.3.x, up to and including master. This server will accept connections from external hosts by default. A...
CVE-2018-11804
CVE-2018-11804 – Information disclosure in Spark Maven build zinc server : The vulnerability stems from a zinc server started by the Maven-based Spark build (build/mvn) which, by default, accepts connections from external hosts. A specially crafted request to the zinc server can cause it to revea...