Description
Apache Spark is an open-source distributed general-purpose cluster-computing framework.
Spark Web UI is designed to be accessed by trusted clients inside trusted environments. It's not recommended to have Apache Spark's services publicly accessible.
Remediation
It's recommended to restrict access to Apache Spark Web UI
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1155)
WordPress Plugin Video Conferencing with Zoom Information Disclosure (3.8.16)
WordPress 5.6.x Multiple Vulnerabilities (5.6 - 5.6.2)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-8810)