CVE-2020-13929: Improper Authentication

September 2, 2021 (updated November 30, 2021)

An authentication bypass vulnerability in Apache Zeppelin allows an attacker to bypass Zeppelin authentication mechanism to act as another user.

References

nvd.nist.gov/vuln/detail/CVE-2020-13929

Detect and mitigate CVE-2020-13929 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →