Apache Zeppelin: LDAP search filter query Injection Vulnerability
CVE-2024-31867
Currently unrated 🤨
Summary
Improper Input Validation vulnerability in Apache Zeppelin. The attackers can execute malicious queries by setting improper configuration properties to LDAP search filter. This issue affects Apache Zeppelin: from 0.8.2 before 0.11.1. Users are recommended to upgrade to version 0.11.1, which fixes the issue.
Affected Version(s)
Apache Zeppelin < 0.11.1
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Qing Xu