Description
Apache Spark is an open-source distributed general-purpose cluster-computing framework.
Spark Web UI is designed to be accessed by trusted clients inside trusted environments. It's not recommended to have Apache Spark's services publicly accessible.
Remediation
It's recommended to restrict access to Apache Spark Web UI
References
Related Vulnerabilities
MantisBT multiple security issues
Internet Information Server returns IP address in HTTP header (Content-Location)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9414)
WordPress Plugin Share Drafts Publicly Information Disclosure (1.1.4)