Security Advisory
CVE-2024-41169
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The attacker can use the raft server protocol in an unauthenticated way. The attacker can see the servers resources, including directories and files. This issue affects Apache Zeppelin: from 0.10.1 up to 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue by removing the Cluster Interpreter.