A vulnerability, which was classified as problematic, was found in Apache Zeppelin SAP up to 0.10.x. This affects an unknown part. The manipulation leads to xml external entity reference. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is uniquely identified as CVE-2022-47894. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.