pkg:Maven/org.apache.spark:spark-core_2.11

10 total CVEsCRITICAL1HIGH4MEDIUM5

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2018-17190Remote Code Execution in spark-core
    from 0
  • HIGH8.8CVE-2025-54920Apache Spark: Spark History Server Code Execution Vulnerability
    from 0, <= 2.4.8
  • HIGH7.8CVE-2017-12612Apache Spark Deserialization of Untrusted Data vulnerability
    from 0, < 2.1.2
  • HIGH7.5CVE-2018-11804Improper Input Validation in Apache Spark
    >= 1.3.0, <= 2.1.3
  • HIGH7.5CVE-2019-10099Sensitive data written to disk unencrypted in Spark
    from 0, < 2.3.3
  • MEDIUM6.1CVE-2017-7678Moderate severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11
    from 0, < 2.2.0
  • MEDIUM5.4CVE-2022-31777Apache Spark vulnerable to Log Injection
    from 0
  • MEDIUM5.4CVE-2018-8024Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark via crafted URL
    >= 2.1.0, < 2.1.3
  • MEDIUM4.7CVE-2018-1334Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark
    >= 1.0.0, < 2.1.3
  • MEDIUM4.2CVE-2018-11770org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11 Improper Authentication vulnerability
    >= 1.0.0, <= 2.3.2