A vulnerability classified as problematic has been found in Apache Zeppelin up to 0.10.x. Affected is an unknown function. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2024-31860. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.