Lucene search

Apache Airflow: Bypass permission verification to read code of other dags

🗓️ 24 Jan 2024 15:30:30Reported by GoogleType

osv🔗 osv.dev👁 11 Views

Apache Airflow vulnerability bypas

Reporter	Title	Published	Views	Family All 13
Hacker One	Internet Bug Bounty: Apache Airflow: Bypass permission verification to read code of other dags	31 Jan 202407:20	–	hackerone
Prion	Code injection	24 Jan 202413:15	–	prion
NVD	CVE-2023-50944	24 Jan 202413:15	–	nvd
Github Security Blog	Apache Airflow: Bypass permission verification to read code of other dags	24 Jan 202415:30	–	github
Cvelist	CVE-2023-50944 Apache Airflow: Bypass permission verification to read code of other dags	24 Jan 202412:58	–	cvelist
OSV	PYSEC-2024-14	24 Jan 202413:15	–	osv
OSV	BIT-airflow-2023-50944	6 Mar 202410:50	–	osv
OSV	CVE-2023-50944	24 Jan 202413:15	–	osv
Veracode	Improper Authorization	25 Jan 202412:22	–	veracode
Vulnrichment	CVE-2023-50944 Apache Airflow: Bypass permission verification to read code of other dags	24 Jan 202412:58	–	vulnrichment

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-50944
github	www.github.com/apache/airflow/pull/36257
github	www.github.com/apache/airflow
github	www.github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2024-14.yaml
lists	www.lists.apache.org/thread/92krb5mpcq8qrw4t4j5oooqw7hgd8q7h
openwall	www.openwall.com/lists/oss-security/2024/01/24/5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jan 2024 15:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS36.5

EPSS0.00171

SSVC