CVE-2022-33891

Apache Spark Command Injection Vulnerability

Beschreibung

Apache Spark contains a command injection vulnerability via Spark User Interface (UI) when Access Control Lists (ACLs) are enabled.

Schweregrad: HIGH

CVSS-Score: 8.8

Hersteller: Apache

Produkt: Spark