CVE-2020-13929

Improper Authentication in maven/org.apache.zeppelin/zeppelin

Identifier

CVE-2020-13929

Package Slug

maven/org.apache.zeppelin/zeppelin

Vulnerability

Improper Authentication

Description

An authentication bypass vulnerability in Apache Zeppelin allows an attacker to bypass Zeppelin authentication mechanism to act as another user.

Affected Versions

All versions up to 0.9.0

Solution

Upgrade to version 0.10.0 or above.

Last Modified

2021-09-13

source