Josna Joseph

**Name of the Vulnerable Software and Affected Versions** Apache Zeppelin versions prior to 0.8.0 **Description** The issue is related to a stored XSS problem that occurs via Note permissions. It was reported by Josna Joseph. **Recommendations** For versions prior to 0.8.0, update to version 0.8.0 or later to resolve the issue. As a temporary workaround, consider restricting access to Note permissions to minimize the risk of exploitation.