Description
The improper Input Validation vulnerability in "”Move folder to Trash” feature of Apache Zeppelin allows an attacker to delete the arbitrary files. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.
Remediation
References
https://lists.apache.org/thread/bxs056g3xlsofz0jb3wny9dw4llwptd2
Related Vulnerabilities
CVE-2021-36162 Vulnerability in maven package org.apache.dubbo:dubbo-cluster
CVE-2021-21166 Vulnerability in npm package electron
CVE-2020-11988 Vulnerability in maven package org.apache.xmlgraphics:xmlgraphics-commons
CVE-2020-7747 Vulnerability in npm package lightning-server
CVE-2023-24815 Vulnerability in maven package io.vertx:vertx-web