First published: Mon Nov 19 2018(Updated: )
Credit: security@apache.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apache Spark |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Apache Spark vulnerability is CVE-2018-17190.
The severity of CVE-2018-17190 is critical.
The affected software for CVE-2018-17190 is Apache Spark.
The vulnerability in Apache Spark allows the execution of code on worker hosts by sending a specially-crafted request to the master host.
Yes, there are references for CVE-2018-17190. You can find them at the following links: [1] http://www.securityfocus.com/bid/105976 [2] https://lists.apache.org/thread.html/341c3187f15cdb0d353261d2bfecf2324d56cb7db1339bfc7b30f6e5@%3Cdev.spark.apache.org%3E [3] https://security.gentoo.org/glsa/201903-21