Threat Advisories

Shell Command Injection Vulnerability found in Apache Spark

July 28, 2022

Threat Level

Vulnerability Report

For a detailed advisory, download the pdf file here

Summary

Apache Spark recently disclosed a weakness, CVE-2022-33891, which would allow threat actors to execute arbitrary shell commands as a Spark.

Revamped version of Redeemer Ransomware has been uncovered on Dark Web Forums

Spyware Group Candiru exploits Chrome Zero-Day to Target Middle East