CVE-2021-28656

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-28656
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-28656.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-28656
Aliases
Published
2024-04-09T10:15:07Z
Modified
2025-05-17T14:16:06.983062Z
Summary
[none]
Details

Cross-Site Request Forgery (CSRF) vulnerability in Credential page of Apache Zeppelin allows an attacker to submit malicious request. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.

References

Affected packages

Git / github.com/apache/zeppelin

Affected ranges

Type
GIT
Repo
https://github.com/apache/zeppelin
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

v0.*

v0.9.0-docker
v0.9.0-preview1