Apache Zeppelin: Exploitable LDAP Search Filter Configuration - Proactive Insights and Support For Open-Source Applications

In Apache Zeppelin versions from 0.8.2 before 0.11.1 an Improper Input Validation vulnerability CVE-2024-31867 was detected. Attackers can exploit the system by tampering with LDAP search filter settings, allowing them to run harmful queries. The issue is resolved in Apache Zeppelin version 0.11.1. For more information, visit https://avd.aquasec.com/nvd/2024/cve-2024-31867/.