This content is viewable by Everyone
Important Vulnerability in Apache Spark
The Apache Software Foundation has released a security update to address an Important vulnerability in Apache Spark. An attacker could exploit this vulnerability to perform arbitrary commands with the permissions of the Spark user.
For a complete description of the vulnerabilities and affected systems CVE-2022-33891: Apache Spark shell command injection vulnerability via Spark UI.