Apache Zeppelin is vulnerable to a Code Injection. The vulnerability is due to improper verification of the JDBC driver configuration which allows an attacker to inject malicious code when connecting MySQL database.
CPE | Name | Operator | Version |
---|---|---|---|
zeppelin: jdbc interpreter | le | 0.11.0 | |
zeppelin: jdbc interpreter | le | 0.11.0 |