Sparkjava Spark : Security vulnerabilities, CVEs directory traversal published in 2018

CVE-2018-9159

In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. NOTE: this product is unrelated to Ignite Realtime Spark.

Max CVSS

5.3

EPSS Score

0.57%

Published

2018-03-31

Updated

2019-10-03

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Sparkjava » Spark : Security Vulnerabilities, CVEs, Published In 2018 (Directory traversal)

CVE-2018-9159