CVE-2024-41169

216.73.216.233

· Published 12/07/2025 17:15 · Modified 12/07/2025 17:15

Labels: CVE-2024-41169 2025-07-12 CVE-2024-41169 CWE-664 [email protected]

Essential information

Published: 12/07/2025 17:15
Modified: 12/07/2025 17:15
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

The attacker can use the raft server protocol in an unauthenticated way. The attacker can see the server's resources, including directories and files. This issue affects Apache Zeppelin: from 0.10.1 up to 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue by removing the Cluster Interpreter.

NVD status

Status: Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
apache / zeppelin	`cpe:2.3:a:apache:zeppelin:0.10.1-0.12.0:::::::*`
apache / zeppelin	`cpe:2.3:a:apache:zeppelin:0.12.0:::::::*`

CVE-2024-41169

Essential information

Description

NVD status

Affected products (CPE)

References