Exposures › CVE-2022-33891
CVE-2022-33891
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2023-03-07
Reference
⚡ RCE
⌖ exploited in the wild
shame 65/100
rceexploited-in-wild
Apache Spark contains a command injection vulnerability via Spark User Interface (UI) when Access Control Lists (ACLs) are enabled.
Players implicated
Description
Apache Spark contains a command injection vulnerability via Spark User Interface (UI) when Access Control Lists (ACLs) are enabled.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.