VDB

CVE-2021-27578

CVE-2021-27578 PUBLISHED CVSS 4.300000190734863 MEDIUM

Cross Site Scripting vulnerability in markdown interpreter of Apache Zeppelin allows an attacker to inject malicious scripts. This issue affects Apache Zeppelin Apache Zeppelin versions prior to 0.9.0.

EPSS 0.70% · 72.4th percentile

Risk Scores

CVSS 2.0
4.300000190734863
EPSS Score
0.70%
72.4th percentile

Affected Products

VendorProductVersions
Mavenorg.apache.zeppelin:zeppelin0
apachezeppelin0
Apache Software FoundationApache ZeppelinApache Zeppelin

Timeline

  • Sep 2, 2021 CVE Published
  • Sep 3, 2021 EPSS Score
  • Sep 29, 2021 EPSS Score
  • Oct 5, 2021 EPSS Score
  • Oct 31, 2021 EPSS Score
  • Dec 28, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 24, 2022 EPSS Score
  • Apr 23, 2022 EPSS Score
  • Jun 19, 2022 EPSS Score
  • Oct 14, 2022 EPSS Score
  • Dec 11, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›