Search for packages
Package details: pkg:maven/org.apache.spark/spark-core_2.11@2.3.2
purl pkg:maven/org.apache.spark/spark-core_2.11@2.3.2
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-6e2g-d1n5-aaam
Aliases:
CVE-2019-10099
GHSA-fp5j-3fpf-mhj5
PYSEC-2019-114
PYSEC-2019-44
Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. This includes cached blocks that are fetched to disk (controlled by spark.maxRemoteBlockSizeFetchToMem); in SparkR, using parallelize; in Pyspark, using broadcast and parallelize; and use of python udfs.
2.3.3
Affected by 1 other vulnerability.
VCID-d7qj-byug-aaan
Aliases:
CVE-2018-17190
GHSA-phg2-9c5g-m4q7
Low severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11 There are no reported fixed by versions.
VCID-nhcd-qhgh-aaah
Aliases:
CVE-2018-11770
GHSA-w4r4-65mg-45x2
Moderate severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11
2.3.3
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T14:29:30.327192+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.3
2025-06-20T14:29:29.409043+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.3
2025-06-20T14:20:43.784893+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.3
2025-06-20T14:20:41.170075+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.3
2025-06-20T14:18:21.580356+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.3
2025-06-20T14:18:21.046998+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.3
2025-06-03T21:13:23.194088+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.0
2025-06-03T21:13:22.237427+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.0
2025-06-03T21:04:48.646007+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.0
2025-06-03T21:04:45.422860+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.0
2025-06-03T21:04:32.616117+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.0
2025-06-03T21:04:32.181731+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.0
2025-06-02T20:54:07.289110+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.2
2025-06-02T20:54:06.114019+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.2
2025-06-02T20:44:39.766744+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.2
2025-06-02T20:44:36.051963+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.2
2025-06-02T20:44:21.814593+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.2
2025-06-02T20:44:21.211995+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.2
2025-04-03T17:21:34.722665+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.0.0
2025-04-03T17:21:32.412188+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.0.0
2025-04-03T17:06:25.703514+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.0.0
2025-04-03T17:06:19.257197+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.0.0
2025-04-03T17:05:59.541314+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.0.0
2025-04-03T17:05:58.494944+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.0.0
2025-02-18T07:40:27.192811+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 35.1.0
2025-02-18T07:40:26.987630+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 35.1.0
2025-02-18T07:04:49.573024+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 35.1.0
2025-02-18T07:04:49.322723+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 35.1.0
2025-02-18T06:17:18.121993+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 35.1.0
2025-02-18T01:39:28.766154+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 35.1.0
2025-01-17T02:31:09.668677+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 35.1.0
2024-11-21T03:10:54.329508+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 35.0.0
2024-11-21T02:51:39.142561+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 35.0.0
2024-11-20T23:55:06.744378+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 35.0.0
2024-11-19T02:53:51.761888+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.3.2
2024-11-19T02:41:38.315639+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.3.2
2024-11-18T23:43:35.470031+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.3.2
2024-10-08T03:29:45.340998+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.2
2024-10-08T03:09:58.470014+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.2
2024-10-08T02:44:53.364442+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.2
2024-10-07T17:55:25.385838+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.2
2024-10-07T17:42:04.319929+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.2
2024-10-07T17:39:39.983770+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.2
2024-09-23T03:06:03.648283+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.1
2024-09-23T02:42:37.838232+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.1
2024-09-22T18:32:18.790365+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.1
2024-09-22T18:13:57.210026+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.1
2024-09-17T22:37:27.964324+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.1
2024-09-17T21:59:57.863191+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.1
2024-04-24T06:05:21.774950+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc4
2024-04-24T06:05:21.535089+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc4
2024-04-24T05:43:30.579114+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc4
2024-04-24T05:43:30.302561+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc4
2024-04-24T05:13:31.163086+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc4
2024-04-24T05:13:30.916375+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc4
2024-04-23T19:21:13.672590+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc4
2024-04-23T19:21:13.433128+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.0rc4
2024-04-23T19:08:15.980784+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc4
2024-04-23T19:08:15.701467+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.0rc4
2024-04-23T18:59:31.916132+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.0rc4
2024-04-23T18:59:31.220246+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc4
2024-01-10T08:36:32.103288+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc2
2024-01-10T08:36:31.862970+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc2
2024-01-10T08:15:11.510235+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc2
2024-01-10T08:15:11.234529+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc2
2024-01-10T07:45:08.574385+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc2
2024-01-10T07:45:08.340274+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc2
2024-01-09T21:12:40.572066+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc2
2024-01-09T21:12:40.307167+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.0rc2
2024-01-09T20:57:33.007059+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc2
2024-01-09T20:57:32.714430+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.0rc2
2024-01-09T20:51:53.626789+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.0rc2
2024-01-09T20:51:52.930219+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc2
2024-01-04T01:21:45.070398+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc1
2024-01-04T01:00:31.123466+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc1
2024-01-04T01:00:30.843552+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc1
2024-01-04T00:30:23.862708+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc1
2024-01-04T00:30:23.633227+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc1
2024-01-03T18:00:22.713600+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc1
2024-01-03T17:39:46.240987+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.0rc1
2024-01-03T16:14:41.519792+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc1
2024-01-03T16:06:16.938720+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc1
2024-01-03T16:02:35.420213+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc1