Lucene search
HistoryMar 15, 2023 - 10:15 a.m.
CVE-2023-25695
cve-2023-25695
apache
airflow
sensitive information disclosure
security vulnerability
cve
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
42.0%
Generation of Error Message Containing Sensitive Information vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.5.2.
Affected configurations
Node
apacheairflowRange≤2.5.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache:airflow | apache airflow | lt | 2.5.2 |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Airflow",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "2.5.2",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
prion
prion
Information disclosure
2023-03-15 10:15:00
cvelist
cvelist
CVE-2023-25695 Information disclosure in Apache Airflow
2023-03-15 09:37:11
osv
osv
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19
CVE-2023-25695
2023-03-15 10:15:09
PYSEC-2023-2
2023-03-15 10:15:00
veracode
veracode
Information Disclosure
2023-03-16 06:18:45
github
github
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19
nvd
nvd
CVE-2023-25695
2023-03-15 10:15:09
cnvd
cnvd
Apache Airflow Information Disclosure Vulnerability (CNVD-2023-23550)
2023-03-17 00:00:00
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
42.0%
Related for CVE-2023-25695