apache-spark is vulnerable to remote code execution (RCE) through unsafe deserialization. A malicious user can pass an object through the port of the system that when deserialized can cause arbitrary code to be executed.
CPE | Name | Operator | Version |
---|---|---|---|
spark project launcher | le | 2.1.1 | |
spark project launcher | le | 2.1.1 |