Lucene search
K

21 matches found

GithubExploit
GithubExploit
added 2025/01/30 5:5 p.m.519 views

Exploit for OS Command Injection in Apache Spark

CVE-2022-33891 - Apache Spark Command Injection Vulnerability...

8.8CVSS9.3AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2024/02/22 3:5 p.m.478 views

Exploit for OS Command Injection in Apache Spark

CVE-2022-33891 - Apache Spark UI Remote Code Execution RCE 🔐...

8.8CVSS9.3AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2023/11/26 1:9 p.m.472 views

Exploit for OS Command Injection in Apache Spark

EP3 - MAC0352 Redes deComputadores e Sistemas Distribuidos 202...

8.8CVSS8.7AI score0.92984EPSS
Exploits12
vulnersOsv
vulnersOsv
added 2023/05/02 9:30 a.m.7 views

abi-ds-utils (>=0.1.2 <=0.1.9), abi-pyspark-utils (>=0.1.1 <=0.1.4) +74 more potentially affected by CVE-2022-33891 +1 more via pyspark (>=3.1.1 <=3.2.1)

pyspark PYPI version =3.1.1, =0.1.2, =0.1.1, =0.1.5, =0.0.2, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.2.1, =0.42.2 and more Source cves: CVE-2022-33891, CVE-2023-32007 Source advisory: OSV:GHSA-59HW-J9G6-MFG3...

8.8CVSS7.4AI score0.92984EPSS
Exploits12
Prion
Prion
added 2023/05/02 9:15 a.m.37 views

Command injection

UNSUPPORTED WHEN ASSIGNED The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in...

6.5CVSS8.8AI score0.92984EPSS
Exploits12References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/27 12:0 a.m.103 views

Apache Spark <= 3.0.3 / 3.1.x > 3.1.1 / 3.2.x < 3.2.1 RCE (CVE-2022-33891)

A remote code execution vulnerability exists in Apache Spark. The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are...

8.8CVSS9.2AI score0.92984EPSS
Exploits12References4
Tenable Nessus
Tenable Nessus
added 2023/03/10 12:0 a.m.49 views

Apache Spark <= 3.0.3 / 3.1.1 < 3.1.3 / 3.2.x < 3.2.1 RCE (CVE-2022-33891)

Binary data apachesparkcve-2022-33891.nbin...

8.8CVSS8.9AI score0.92984EPSS
Exploits12References4
The Hacker News
The Hacker News
added 2023/03/08 6:30 a.m.135 views

CISA's KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added three security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The list of vulnerabilities is below - CVE-2022-35914 CVSS score: 9.8 - Teclib GLPI Remote Code Execution...

9.8CVSS0.4AI score0.99628EPSS
Exploits40
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.80 views

K33828251: Apache Spark vulnerability CVE-2022-33891

Security Advisory Description The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in...

8.8CVSS9.3AI score0.92984EPSS
Exploits12
Check Point Advisories
Check Point Advisories
added 2022/11/06 12:0 a.m.17 views

Apache Spark UI Command Injection (CVE-2022-33891)

A command execution vulnerability exists in Apache Spark. The vulnerability is due to errors in parsing user requests when the ACL is enabled...

4.4AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2022/08/13 11:2 p.m.430 views

Exploit for OS Command Injection in Apache Spark

CVE-2022-33891 Apache Spark...

8.8CVSS8.8AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2022/07/30 11:2 p.m.98 views

Exploit for OS Command Injection in Apache Spark

「💥」CVE-2022-33891 Description The Apache Spark UI offers...

8.8CVSS6.2AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2022/07/20 10:52 p.m.1001 views

Exploit for OS Command Injection in Apache Spark

CVE-2022-33891 Apache Spark Shell Command Injection Vulnerabil...

8.8CVSS9.3AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2022/07/19 6:52 p.m.398 views

Exploit for OS Command Injection in Apache Spark

CVE-2022-33891 Apache Spark Shell Command Injection Vulnerabil...

8.8CVSS9.3AI score0.92984EPSS
Exploits12
vulnersOsv
vulnersOsv
added 2022/07/19 12:0 a.m.7 views

abi-ds-utils (>=0.1.2 <=0.1.9), abi-pyspark-utils (>=0.1.1 <=0.1.4) +119 more potentially affected by CVE-2022-33891 via pyspark (>=2.1.2 <=3.1.2)

pyspark PYPI version =2.1.2, =0.1.2, =0.1.1, =0.5.1, =0.2.0, =1.0.0, =0.9.1, =0.1.57, =0.11.0, =0.14.0b20211027, =2.0.0, =2.5.0b20240324 and more Source cves: CVE-2022-33891 Source advisory: OSV:GHSA-4X9R-J582-CGR8...

8.8CVSS7.7AI score0.92984EPSS
Exploits12
GithubExploit
GithubExploit
added 2022/07/18 4:16 p.m.588 views

Exploit for OS Command Injection in Apache Spark

cve-2022-33891 Usage: python pip3 install requests If yo...

8.8CVSS9AI score0.92984EPSS
Exploits12
Circl
Circl
added 2022/07/18 12:34 p.m.7 views

CVE-2022-33891

creationtimestamp| type| source ---|---|--- 2022-07-18 12:34:21+00:00| seen| https://t.me/cibsecurity/46426 2022-07-19 10:27:13+00:00| published-proof-of-concept| https://t.me/proxybar/921 2022-07-19 12:06:25+00:00| published-proof-of-concept| https://t.me/MrVGunz/340 2022-07-19 12:12:47+00:00|...

8.8CVSS7.5AI score0.92984EPSS
In wildExploits12References44
vulnersOsv
vulnersOsv
added 2022/07/18 7:15 a.m.4 views

anomalywatchdog (>=0.0.2 <=0.0.7), bigdl-dllib-spark321 (=2.1.0b202207291) +28 more potentially affected by CVE-2022-33891 via pyspark (>=3.2.0 <=3.2.1)

pyspark PYPI version =3.2.0, =0.0.2, =0.2.1, =1.0.1, =1.0.1, =0.0.6, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.3.0 and more Source cves: CVE-2022-33891 Source advisory: OSV:PYSEC-2022-236...

8.8CVSS7.4AI score0.92984EPSS
Exploits12
Cvelist
Cvelist
added 2022/07/18 12:0 a.m.32 views

CVE-2022-33891 Apache Spark shell command injection vulnerability via Spark UI

The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can allow someone to...

9AI score0.92984EPSS
Exploits12References3
Vulnrichment
Vulnrichment
added 2022/07/18 12:0 a.m.18 views

CVE-2022-33891 Apache Spark shell command injection vulnerability via Spark UI

The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can allow someone to...

7.9AI score0.92984EPSS
Exploits12References3
Rows per page
Query Builder