4 matches found
CVE-2024-41177
creationtimestamp| type| source ---|---|--- 2025-08-03 13:58:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvitktiepz2e 2025-08-03 15:59:50+00:00| seen| https://seclists.org/oss-sec/2025/q3/73 2025-08-03 18:12:45+00:00| seen|...
CVE-2024-41177
Incomplete Blacklist to Cross-Site Scripting vulnerability in Apache Zeppelin. This issue affects Apache Zeppelin: before 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue...
CVE-2024-41177 Apache Zeppelin: XSS in the Helium module
Incomplete Blacklist to Cross-Site Scripting vulnerability in Apache Zeppelin. This issue affects Apache Zeppelin: before 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue...
CVE-2024-41177
CVE-2024-41177 affects Apache Zeppelin (Helium module) up to version 0.12.0. The issue is an Incomplete Blacklist to Cross-Site Scripting vulnerability in the Helium module, allowing XSS via insufficient input validation. The recommended remediation is to upgrade org.apache.zeppelin:zeppelin-web ...