CVE-2025-54920 | Apache Spark up to 3.5.6/4.0.0 privilege escalation

Inserito da Angelo Barbosa | Mar 14, 2026 | CVE

A vulnerability was found in Apache Spark up to 3.5.6/4.0.0 and classified as critical. This vulnerability affects unknown code. Such manipulation leads to privilege escalation.

This vulnerability is listed as CVE-2025-54920. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2025-54920 | Apache Spark up to 3.5.6/4.0.0 privilege escalation

Post correlati

CVE-2024-1474 | Progress WS_FTP Server up to 8.8.4 Administrative Interface cross site scripting

CVE-2024-8664 | WP Test Email Plugin up to 1.1.7 on WordPress cross site scripting

CVE-2023-54184 | Linux Kernel up to 5.4.243/5.10.180/5.15.112/6.1.29/6.3.3 sbitmap_queue_clear null pointer dereference

CVE-2024-34405 | McAfee Security Antivirus VPN up to 8.2.x on Android URL unknown vulnerability