CVE-2021-20078

Folder deletion due to Path Traversal vulnerability in Spark gateway jar

 

Vulnerability Details
Impact CVSS V3 rating: 9.1 (High)
Reported 4th March,2021
Reported by David
Fixed 26th March,2021
Affected Builds 125216 - 125361
Fixed in Builds 125362, 125332 and 125347
Overview Folder deletion due to Path Traversal vulnerability in Sparkgateway jar
Recommended Fix

For builds 125331 and below, please upgrade to the latest version here.

For builds 125346 and below, please upgrade to the latest version here.

For builds 125350 and above, please contact our support team or email us at ncm-support@manageengine.com.

 

Description

Folder deletion due to Path Traversal vulnerability in Spark gateway jar

Source and Acknowledgements

Find out more about CVE-2021-20078 from the CVE dictionary.

Need Help?

For clarification or corrections please contact our support team or email us at ncm-support@manageengine.com.