CVE-2019-10095 is a vulnerability in Apache Zeppelin
Published on September 2, 2021

bash command injection in spark interpreter
bash command injection vulnerability in Apache Zeppelin allows an attacker to inject system commands into Spark interpreter settings. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.

Vendor Advisory NVD

Products Associated with CVE-2019-10095

Want to know whenever a new CVE is published for Apache Zeppelin? stack.watch will email you.

Apache Zeppelin

Affected Versions

Apache Software Foundation Apache Zeppelin:

Version Apache Zeppelin, <= 0.9.0 is affected.

Exploit Probability

EPSS

3.02%

Percentile

86.44%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10095 is a vulnerability in Apache ZeppelinPublished on September 2, 2021

Products Associated with CVE-2019-10095

Affected Versions

Exploit Probability

CVE-2019-10095 is a vulnerability in Apache Zeppelin
Published on September 2, 2021