The Apache Software Foundation has released a security update to address an Important vulnerability in Apache Spark. An attacker could exploit this vulnerability to perform arbitrary commands with the permissions of the Spark user. 

For a complete description of the vulnerabilities and affected systems CVE-2022-33891: Apache Spark shell command injection vulnerability via Spark UI.

IT Security

Read more about IT Security service offerings.