Lucene search
China National Vulnerability DatabaseCNVD-2023-23550HistoryMar 17, 2023 - 12:00 a.m.
Apache Airflow Information Disclosure Vulnerability (CNVD-2023-23550)
2023-03-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
apache airflow
open source
workflows
apache foundation
vulnerability
sensitive information
0.001 Low
EPSS
Percentile
41.9%
Apache Airflow is an open source platform for creating, managing, and monitoring workflows from the Apache Foundation. The platform is scalable and dynamically monitored, etc. An information disclosure vulnerability exists in versions prior to Apache Airflow 2.5.2, which stems from the fact that the application generates error messages containing sensitive information. An attacker could exploit the vulnerability to obtain sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache airflow | lt | 2.5.2 |
Related
cve
cve
CVE-2023-25695
2023-03-15 10:15:09
prion
prion
Information disclosure
2023-03-15 10:15:00
cvelist
cvelist
CVE-2023-25695 Information disclosure in Apache Airflow
2023-03-15 09:37:11
nvd
nvd
CVE-2023-25695
2023-03-15 10:15:09
osv
osv
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19
CVE-2023-25695
2023-03-15 10:15:09
PYSEC-2023-2
2023-03-15 10:15:00
veracode
veracode
Information Disclosure
2023-03-16 06:18:45
github
github
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19