CVE-2022-33891 PoC — Apache Spark shell command injection vulnerability via Spark UI

Source

https://github.com/Vulnmachines/Apache-spark-CVE-2022-33891

Associated Vulnerability

Title:Apache Spark shell command injection vulnerability via Spark UI (CVE-2022-33891)
Description:The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can allow someone to perform impersonation by providing an arbitrary user name. A malicious user might then be able to reach a permission check function that will ultimately build a Unix shell command based on their input, and execute it. This will result in arbitrary shell command execution as the user Spark is currently running as. This affects Apache Spark versions 3.0.3 and earlier, versions 3.1.1 to 3.1.2, and versions 3.2.0 to 3.2.1.

Description

Apache Spark RCE - CVE-2022-33891

Readme

# Apache-spark-CVE-2022-33891
Apache Spark RCE - CVE-2022-33891


### [PoC]

[![IMAGE ALT TEXT HERE](https://img.youtube.com/vi/bT0MOd3sMjw/0.jpg)](https://www.youtube.com/watch?v=bT0MOd3sMjw)



#### Follow us 
#### [Vulnmachines Platform](https://www.vulnmachines.com)
#### [YouTube](https://www.youtube.com/c/vulnmachines)
#### [Twitter](https://www.twitter.com/vulnmachines)
#### [Facebook](https://www.facebook.com/vulnmachines)
#### [LinkedIn](https://www.linkedin.com/company/vulnmachines)

File Snapshot


 [4.0K]  /data/pocs/da027f5d82f034ed1dd5081adc64e0e83fb0382f
└── [ 497]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!