pkg:maven/org.apache.spark/spark-parent_2.12
Type
maven
Namespace
org.apache.spark
Name
spark-parent_2.12
Known advisories, vulnerabilities and fixes for org.apache.spark/spark-parent_2.12 package.
High
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 3.1.1, < 3.2.2 <= 3.0.3 |
CVE-2022-33891
|
MAVEN:GHSA-4X9R-J582-CGR8 | Apache Spark UI can allow impersonation if ACLs enabled | high |
2022-07-19T00:00:29
(2 years ago) |
|
Fixed | = 3.2.2 |
CVE-2022-33891
|
MAVEN:GHSA-4X9R-J582-CGR8 | Apache Spark UI can allow impersonation if ACLs enabled | high |
2022-07-19T00:00:29
(2 years ago) |
|
Affected | >= 3.1.1, < 3.2.2 |
CVE-2023-32007
|
MAVEN:GHSA-59HW-J9G6-MFG3 | Apache Spark UI vulnerable to Command Injection | high |
2023-05-02T09:30:17
(16 months ago) |
|
Fixed | = 3.2.2 |
CVE-2023-32007
|
MAVEN:GHSA-59HW-J9G6-MFG3 | Apache Spark UI vulnerable to Command Injection | high |
2023-05-02T09:30:17
(16 months ago) |