exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2023-40272

больше 2 лет назад

Apache Airflow Spark Provider, versions before 4.1.3, is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection giving an opportunity to read files on the Airflow server. It is recommended to upgrade to a version that is not affected.

CVSS3: 7.5

EPSS: Низкий

GHSA-r2f6-6928-fh8f

больше 2 лет назад

Apache Airflow Spark Provider Improper Input Validation vulnerability

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2023-40272 Apache Airflow Spark Provider, versions before 4.1.3, is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection giving an opportunity to read files on the Airflow server. It is recommended to upgrade to a version that is not affected.	CVSS3: 7.5	1% Низкий	больше 2 лет назад
	GHSA-r2f6-6928-fh8f Apache Airflow Spark Provider Improper Input Validation vulnerability	CVSS3: 7.5	1% Низкий	больше 2 лет назад

Уязвимостей на страницу