VYPR

rpm package

suse/spark&distro=SUSE Manager Server 3.1

pkg:rpm/suse/spark&distro=SUSE%20Manager%20Server%203.1

Vulnerabilities (1)

  • CVE-2018-9159MedMar 31, 2018
    affected < 2.3-3.3.1fixed 2.3-3.3.1

    In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. NOTE: this product is unrelated to Ignite Realtime Spark.