VDB
CVE-2025-54920
CVE-2025-54920
PUBLISHED
Apache Spark: Spark History Server Code Execution Vulnerability
EPSS 0.49% · 65.7th percentile
Risk Scores
EPSS Score
0.49%
65.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | spark | 4.0.0, 0, 4.0.0 |
Timeline
- Mar 14, 2026 EPSS Score
- Mar 14, 2026 CVE Published
- Mar 15, 2026 EPSS Score
- Mar 16, 2026 EPSS Score
- Mar 17, 2026 EPSS Score
- Mar 18, 2026 EPSS Score
- Mar 19, 2026 EPSS Score
- Mar 20, 2026 EPSS Score
- Mar 20, 2026 CVE Updated
- Mar 21, 2026 EPSS Score
- Mar 22, 2026 EPSS Score
- Mar 23, 2026 EPSS Score
References
- http://www.openwall.com/lists/oss-security/2026/03/13/4 url
- https://github.com/apache/spark/pull/51312 url
- https://github.com/apache/spark/pull/51323 url
- https://issues.apache.org/jira/browse/SPARK-52381 url
- https://lists.apache.org/thread/4y9n0nfj7m68o2hpmoxgc0y7dm1lo02s url
- https://nvd.nist.gov/vuln/detail/CVE-2025-54920 url