Apache Spark <= 3.0.3 / 3.1.1 < 3.1.3 / 3.2.x < 3.2.1 RCE (CVE-2022-33891)

high Nessus プラグイン ID 172446

Language:

バージョン 1.63 Jul 15, 2025, 2:39 AM Logic Changes Plugin Feed: 202507150239
バージョン 1.62 Jul 10, 2025, 5:41 PM Logic Changes (Windows CA support) Plugin Feed: 202507101741
バージョン 1.61 Jun 23, 2025, 9:47 PM Logic Changes Plugin Feed: 202506232147
バージョン 1.60 May 15, 2025, 5:17 AM Detection (remove script_exclude_keys for CGI scanning) Plugin Feed: 202505150517
バージョン 1.57 Feb 12, 2025, 3:29 PM Logic Changes Plugin Feed: 202502121529
バージョン 1.56 Feb 12, 2025, 1:58 AM Logic Changes Plugin Feed: 202502120158
バージョン 1.55 Feb 10, 2025, 4:00 PM Logic Changes Plugin Feed: 202502101600
バージョン 1.53 Jan 22, 2025, 5:44 PM New Plugin Feed: 202501221744
バージョン 1.51 Jan 13, 2025, 10:27 PM New Plugin Feed: 202501132227
バージョン 1.50 Jan 13, 2025, 7:38 PM Logic Changes (Add display fix to structured reporting.) Plugin Feed: 202501131938
バージョン 1.46 Dec 24, 2024, 11:44 AM New Plugin Feed: 202412241144
バージョン 1.45 Nov 22, 2024, 6:54 PM Logic Changes (Fixed installation reporting) Plugin Feed: 202411221854
バージョン 1.44 Nov 12, 2024, 8:29 PM Logic Changes (Adding installs report) Plugin Feed: 202411122029
バージョン 1.42 Oct 29, 2024, 8:44 PM Logic Changes (Extend structured reporting to vcf_extras) Plugin Feed: 202410292044
バージョン 1.38 Oct 10, 2024, 11:57 PM New Plugin Feed: 202410102357
バージョン 1.37 Oct 9, 2024, 5:56 PM Logic Changes (Corrects vulnerability-finding structured data tags to include the port.) Plugin Feed: 202410091756
バージョン 1.33 Oct 3, 2024, 6:29 PM Detection (Adding hardware constraint support to VCF and UCF) Plugin Feed: 202410031829
バージョン 1.32 Oct 2, 2024, 4:10 PM Logic Changes (Adds structured data reports to a subset of manual plugins.) Plugin Feed: 202410021610
バージョン 1.27 Jul 17, 2024, 11:02 PM Logic Changes Plugin Feed: 202407172302
バージョン 1.24 May 28, 2024, 5:14 PM Required Scan configuration ("Enable cgi scanning" set to "True") Plugin Feed: 202405281714
バージョン 1.22 May 20, 2024, 10:13 AM Logic Changes Plugin Feed: 202405201013
バージョン 1.19 Mar 19, 2024, 6:40 PM Logic Changes (Improving logging to reduce disk space usage) Plugin Feed: 202403191840
バージョン 1.18 Feb 22, 2024, 3:51 PM Logic Changes Plugin Feed: 202402221551
バージョン 1.15 Feb 9, 2024, 11:22 AM New Plugin Feed: 202402091122
バージョン 1.13 Oct 24, 2023, 4:27 PM CVSSv2 score source (changed from "CVE-2022-33891" to "CVE-2023-32007") Plugin Feed: 202310241627
バージョン 1.11 Oct 4, 2023, 2:09 PM CVE (Add CVE-2023-32007) Plugin Feed: 202310041409
バージョン 1.10 Sep 26, 2023, 8:16 PM Logic Changes Plugin Feed: 202309262016
バージョン 1.9 Jul 17, 2023, 5:15 PM Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii()) Plugin Feed: 202307171715
バージョン 1.8 Jun 20, 2023, 9:07 PM Logic Changes (Temporarily limit debug logging) Plugin Feed: 202306202107
バージョン 1.6 Jun 1, 2023, 5:27 AM Logic Changes (Better logging) Plugin Feed: 202306010527
バージョン 1.4 May 1, 2023, 9:07 PM Detection (Make and use compatibility wrapper for running commands on scanner localhost to handle deprecation of pread().) Plugin Feed: 202305012107
バージョン 1.2 Mar 27, 2023, 6:02 PM New Plugin Feed: 202303271802
バージョン 1.1 Mar 11, 2023, 5:55 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") Exploit attributes ("Exploit framework metasploit" set to "True") CISA reference CVSS metrics ("CVSSv2 score" changed from "9.7" to "9.0". "CVSSv2 score" changed from "9.7" to "9.0". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C") Plugin Feed: 202303111755
バージョン 1.0 Mar 10, 2023, 7:12 PM New Plugin Feed: 202303101912

* Changelogs are generally available for changes made after Nov 1, 2022