Apache Spark <= 3.0.3 / 3.1.1 < 3.1.3 / 3.2.x < 3.2.1 RCE (CVE-2022-33891)

high Nessus Plugin ID 172446

Language:

Version 1.1

Mar 11, 2023, 5:55 PM

Exploit attributes ("Exploit framework metasploit" set to "True")

CISA reference

CVSS metrics ("CVSSv2 score" changed from "9.7" to "9.0". "CVSSv2 score" changed from "9.7" to "9.0". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C")

CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C")

Plugin Feed: 202303111755

Detections

Analytics

Apache Spark <= 3.0.3 / 3.1.1 < 3.1.3 / 3.2.x < 3.2.1 RCE (CVE-2022-33891)

high Nessus Plugin ID 172446

Version 1.1