CVE-2016-9177

Directory traversal vulnerability in Spark 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.

Date published : 2016-11-04

http://www.securityfocus.com/bid/94218

https://github.com/perwendel/spark/issues/700