Description
Apache Spark is an open-source distributed general-purpose cluster-computing framework.
Spark Web UI is designed to be accessed by trusted clients inside trusted environments. It's not recommended to have Apache Spark's services publicly accessible.
Remediation
It's recommended to restrict access to Apache Spark Web UI
References
Related Vulnerabilities
Unencrypted __VIEWSTATE parameter
Spring Boot Misconfiguration: Unsafe value for session tracking
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14634)
WordPress Plugin Welcart e-Commerce Information Disclosure (2.2.7)
WordPress Plugin JS MultiHotel Multiple Vulnerabilities (2.2.1)