Количество 4
Количество 4
CVE-2023-42781
Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to read information about task instances in other DAGs. This is a different issue than CVE-2023-42663 but leading to similar outcome. Users of Apache Airflow are advised to upgrade to version 2.7.3 or newer to mitigate the risk associated with this vulnerability.
CVE-2023-42781
Apache Airflow, versions before 2.7.3, has a vulnerability that allows ...
GHSA-r7x6-xfcm-3mxv
Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
BDU:2023-07927
Уязвимость сетевого программного средства Apache Airflow, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-42781 Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to read information about task instances in other DAGs. This is a different issue than CVE-2023-42663 but leading to similar outcome. Users of Apache Airflow are advised to upgrade to version 2.7.3 or newer to mitigate the risk associated with this vulnerability. | CVSS3: 6.5 | 0% Низкий | около 2 лет назад |
| CVE-2023-42781 Apache Airflow, versions before 2.7.3, has a vulnerability that allows ... | CVSS3: 6.5 | 0% Низкий | около 2 лет назад |
| GHSA-r7x6-xfcm-3mxv Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor | CVSS3: 6.5 | 0% Низкий | около 2 лет назад |
 | BDU:2023-07927 Уязвимость сетевого программного средства Apache Airflow, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 4.3 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу