pkg:maven/org.apache.zeppelin/zeppelin
Type
maven
Namespace
org.apache.zeppelin
Name
zeppelin
Known advisories, vulnerabilities and fixes for org.apache.zeppelin/zeppelin package.
Critical
1
High
3
Moderate
4
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 0.10.0 |
CVE-2019-10095
|
 MAVEN:GHSA-4QW8-PGPR-P9MQ
|
Bash command injection in Apache Zeppelin | critical |
2021-09-07T22:56:43
(3 years ago) |
|
| Fixed | = 0.10.0 |
CVE-2019-10095
|
MAVEN:GHSA-4QW8-PGPR-P9MQ
|
Bash command injection in Apache Zeppelin | critical |
2021-09-07T22:56:43
(3 years ago) |
|
| Affected | < 0.10.0 |
CVE-2020-13929
|
MAVEN:GHSA-87P2-CVHQ-Q4MV
|
Authentication bypass in Apache Zeppelin | high |
2021-09-07T22:56:56
(3 years ago) |
|
| Fixed | = 0.10.0 |
CVE-2020-13929
|
MAVEN:GHSA-87P2-CVHQ-Q4MV
|
Authentication bypass in Apache Zeppelin | high |
2021-09-07T22:56:56
(3 years ago) |
|
| Affected | < 0.8.2 |
CVE-2022-46870
|
MAVEN:GHSA-9P8J-HRGF-JC2G
|
Apache Zeppelin Cross-site Scripting vulnerability | moderate |
2022-12-20T21:30:19
(21 months ago) |
|
| Fixed | = 0.8.2 |
CVE-2022-46870
|
MAVEN:GHSA-9P8J-HRGF-JC2G
|
Apache Zeppelin Cross-site Scripting vulnerability | moderate |
2022-12-20T21:30:19
(21 months ago) |
|
| Affected | < 0.8.0 |
CVE-2018-1317
|
MAVEN:GHSA-9X2H-HVG6-4R5P
|
Improper Authentication in Apache Zeppelin | high |
2019-04-24T16:06:52
(5 years ago) |
|
| Fixed | = 0.8.0 |
CVE-2018-1317
|
MAVEN:GHSA-9X2H-HVG6-4R5P
|
Improper Authentication in Apache Zeppelin | high |
2019-04-24T16:06:52
(5 years ago) |
|
| Affected | < 0.7.3 |
CVE-2017-12619
|
MAVEN:GHSA-C538-924G-99Q4
|
Session Fixation in Apache Zeppelin | high |
2019-04-24T16:06:59
(5 years ago) |
|
| Fixed | = 0.7.3 |
CVE-2017-12619
|
MAVEN:GHSA-C538-924G-99Q4
|
Session Fixation in Apache Zeppelin | high |
2019-04-24T16:06:59
(5 years ago) |
|
| Affected | < 0.10.0 |
CVE-2021-28655
|
MAVEN:GHSA-GM67-H5WR-W3CV
|
Apache Zeppelin Improper Input Validation vulnerability | moderate |
2023-07-06T19:24:05
(14 months ago) |
|
| Fixed | = 0.10.0 |
CVE-2021-28655
|
MAVEN:GHSA-GM67-H5WR-W3CV
|
Apache Zeppelin Improper Input Validation vulnerability | moderate |
2023-07-06T19:24:05
(14 months ago) |
|
| Affected | < 0.9.0 |
CVE-2021-27578
|
MAVEN:GHSA-MF7Q-GW5F-Q8JJ
|
Cross-site Scripting in Apache Zeppelin | moderate |
2021-09-07T22:55:56
(3 years ago) |
|
| Fixed | = 0.9.0 |
CVE-2021-27578
|
MAVEN:GHSA-MF7Q-GW5F-Q8JJ
|
Cross-site Scripting in Apache Zeppelin | moderate |
2021-09-07T22:55:56
(3 years ago) |
|
| Affected | < 0.8.0 |
CVE-2018-1328
|
MAVEN:GHSA-R2V5-5VCR-H3VQ
|
Cross-site Scripting in Apache Zeppelin | moderate |
2019-04-24T16:07:36
(5 years ago) |
|
| Fixed | = 0.8.0 |
CVE-2018-1328
|
MAVEN:GHSA-R2V5-5VCR-H3VQ
|
Cross-site Scripting in Apache Zeppelin | moderate |
2019-04-24T16:07:36
(5 years ago) |