CVE-2018-9159

Risk Scores

Affected Products

Exploit Intelligence

• shoucheng3/perwendel__spark_CVE-2018-9159_2_7_2_fixed (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2_7_2_fixed (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2_7_2_fixed (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2_7_2_fixed (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2_7_2_fixed (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2-7-1 (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2-7-1 (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2-7-1 (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2-7-1 (github-poc)
• shoucheng3/perwendel__spark_CVE-2018-9159_2-7-1 (github-poc)

…and 8 more exploits

Timeline

• Mar 31, 2018 CVE Published
• Oct 3, 2019 CVE Updated
• Apr 14, 2021 EPSS Score
• Jun 23, 2021 EPSS Score
• Aug 24, 2021 EPSS Score
• Dec 27, 2021 EPSS Score
• Feb 4, 2022 EPSS Score
• Feb 28, 2022 EPSS Score
• May 2, 2022 EPSS Score
• Sep 5, 2022 EPSS Score
• Nov 6, 2022 EPSS Score
• Jan 8, 2023 EPSS Score

References

• https://github.com/perwendel/spark/issues/981 url
• https://github.com/perwendel/spark/commit/a221a864db28eb736d36041df2fa6eb8839fc5cd url
• RHSA-2018:2020 vendor-advisory
• RHSA-2018:2405 vendor-advisory
• https://github.com/perwendel/spark/commit/ce9e11517eca69e58ed4378d1e47a02bd06863cc url
• http://sparkjava.com/news#spark-272-released url
• https://github.com/perwendel/spark/commit/030e9d00125cbd1ad759668f85488aba1019c668 url
• https://nvd.nist.gov/vuln/detail/CVE-2018-9159 advisory
• https://github.com/advisories/GHSA-76qr-mmh8-cp8f advisory
• https://github.com/perwendel/spark package