14 matches found
Code Injection
org.apache.zeppelin,zeppelin is vulnerable to Code Injection. The vulnerability is due to the use of the Shell interpreter as a code generation gateway, allowing attackers to execute generated code...
Code injection in Apache Zeppelin Shell
Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Zeppelin. The attackers can use Shell interpreter as a code generation gateway, and execute the generated code as a normal way. This issue affects Apache Zeppelin: from 0.10.1 before 0.11.1. Users are recommended to...
GHSA-8PFJ-W89W-M24X Code injection in Apache Zeppelin Shell
Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Zeppelin. The attackers can use Shell interpreter as a code generation gateway, and execute the generated code as a normal way. This issue affects Apache Zeppelin: from 0.10.1 before 0.11.1. Users are recommended to...
CVE-2024-31861
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2024-31861
CVE-2024-31861 is rejected/not used; withdrawn by the CNA and not a security issue.
CVE-2024-31861
...
编号撤回
Apache Zeppelin is a Web-based open source laptop application from the Apache USA Foundation. The program supports interactive data analysis and collaborative documentation. Apache Zeppelin suffers from a code injection vulnerability that can be exploited by an attacker to use the Shell interpret...
Apache Zeppelin Code Injection Vulnerability
Apache Zeppelin is a Web-based open source laptop application from the Apache USA Foundation. The program supports interactive data analysis and collaborative documentation. Apache Zeppelin suffers from a code injection vulnerability that can be exploited by an attacker to use the Shell interpret...
ALSA-2022:2120 Moderate: zsh security update
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command-line editing, built-in spelling correction, programmable command completion, shell...
[SECURITY] Fedora 26 Update: zsh-5.3.1-7.fc26
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...
[SECURITY] Fedora 20 Update: bash-4.2.51-2.fc20
The GNU Bourne Again shell Bash is a shell or command language interpreter that is compatible with the Bourne shell sh. Bash incorporates useful features from the Korn shell ksh and the C shell csh. Most sh scripts can be run by bash without modification...
CentOS 5 / 6 / 7 : bash (CESA-2014:1306)
Updated bash packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
bash security update
CentOS Errata and Security Advisory CESA-2014:1293 Updated bash packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score...
CVE-2002-0061
Apache HTTP Server on Windows (Win32) is vulnerable prior to versions 1.3.24 and 2.0.x prior to 2.0.34-beta. The flaw allows remote attackers to execute arbitrary commands by sending shell metacharacters (a pipe |) as arguments to batch (.bat) or .cmd scripts, which reach the shell interpreter (c...