Vulnerabilities > Sparkjava > Spark > 2.6.0

DATE CVE VULNERABILITY TITLE RISK
2018-03-31 CVE-2018-9159 Path Traversal vulnerability in Sparkjava Spark
In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences.
network
low complexity
sparkjava CWE-22
5.3
5.3