Lucene search
HistoryFeb 24, 2023 - 12:15 p.m.
CVE-2023-25692
cve-2023-25692
improper input validation
apache airflow
google provider
nvd
vulnerability
security
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.9%
Improper Input Validation vulnerability in the Apache Airflow Google Provider.
This issue affects Apache Airflow Google Provider versions before 8.10.0.
Affected configurations
Node
apacheapache-airflow-providers-googleRange≤8.10.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache:apache-airflow-providers-google | apache apache-airflow-providers-google | lt | 8.10.0 |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Airflow Google Provider",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "8.10.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]References
Social References
More
Related
osv
osv
Apache Airflow Google Provider Improper Input Validation vulnerability
2023-02-24 12:31:20
CVE-2023-25692
2023-02-24 12:15:30
nvd
nvd
CVE-2023-25692
2023-02-24 12:15:30
hackerone
hackerone
prion
prion
Input validation
2023-02-24 12:15:00
github
github
Apache Airflow Google Provider Improper Input Validation vulnerability
2023-02-24 12:31:20
veracode
veracode
Denial Of Service (DoS)
2023-02-28 10:27:10
cvelist
cvelist
cnvd
cnvd
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.9%
Related for CVE-2023-25692