Lucene search

Apache Airflow denial of service vulnerability

🗓️ 23 Aug 2023 18:34:30Reported by GoogleType

osv🔗 osv.dev👁 13 Views

Apache Airflow DoS Vulnerability in Versions Prior to 2.7.

Reporter	Title	Published	Views	Family All 13
OSV	CVE-2023-37379	23 Aug 202316:15	–	osv
OSV	BIT-airflow-2023-37379	6 Mar 202410:54	–	osv
OSV	PYSEC-2023-152	23 Aug 202316:15	–	osv
Hacker One	Internet Bug Bounty: SSRF Vulnerability through Connection test feature	25 Aug 202306:19	–	hackerone
Vulnrichment	CVE-2023-37379 Apache Airflow: Exposure of sensitive connection information, DOS and SSRF on "test connection" feature	23 Aug 202315:38	–	vulnrichment
NVD	CVE-2023-37379	23 Aug 202316:15	–	nvd
CVE	CVE-2023-37379	23 Aug 202316:15	–	cve
CNVD	Apache Airflow code issue vulnerability (CNVD-2023-85615)	25 Aug 202300:00	–	cnvd
Cvelist	CVE-2023-37379 Apache Airflow: Exposure of sensitive connection information, DOS and SSRF on "test connection" feature	23 Aug 202315:38	–	cvelist
Prion	Improper access control	23 Aug 202316:15	–	prion

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-37379
github	www.github.com/apache/airflow/pull/32052
github	www.github.com/apache/airflow
github	www.github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2023-152.yaml
lists	www.lists.apache.org/thread/g5c9vcn27lr14go48thrjpo6f4vw571r
openwall	www.openwall.com/lists/oss-security/2023/08/23/4

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Aug 2023 18:30Current

6.4Medium risk

Vulners AI Score6.4

CVSS38.1

EPSS0.00216

SSVC