unauth-spark-api: Unauthenticated Spark REST API

日期: 2025-08-01 | 影响软件: Spark | POC: 已公开

漏洞描述

The Spark product's REST API interface allows access to unauthenticated users.

PoC代码[已公开]

id: unauth-spark-api

info:
  name: Unauthenticated Spark REST API
  author: princechaddha
  severity: critical
  description: The Spark product's REST API interface allows access to unauthenticated users.
  remediation: Restrict access the exposed API ports.
  reference:
    - https://xz.aliyun.com/t/2490
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
    cvss-score: 10
    cwe-id: CWE-77
  metadata:
    max-request: 1
  tags: spark,unauth,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/v1/submissions"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 400

      - type: word
        words:
          - "Missing an action"
          - "serverSparkVersion"
        part: body
        condition: and
# digest: 4a0a00473045022100ad070edf2016fe56f99c72bab062e82b3d28d08f8af3a86eee69e2953f6af78102204b939f12a57df30728c36586e110498f705ab3ceee0704a01bd39dd32b92c5d7:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/other/unauth-spark-api.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐