rpm package
suse/spark&distro=SUSE Manager Server 3.1
pkg:rpm/suse/spark&distro=SUSE%20Manager%20Server%203.1
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-9159 | Med | 5.3 | < 2.3-3.3.1 | 2.3-3.3.1 | Mar 31, 2018 | In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. NOTE: this product is unrelated to Ignite Realtime Spark. |
- affected < 2.3-3.3.1fixed 2.3-3.3.1
In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. NOTE: this product is unrelated to Ignite Realtime Spark.