Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2026/02/20 10:16 a.m.4 views

ROOT-APP-PYPI-CVE-2023-25754 CVE-2023-25754 in rootio-apache-airflow - Patched by Root

Root has patched CVE-2023-25754 in the rootio-apache-airflow package for Root:PyPI. Multiple fixed versions available...

9.8CVSS5.4AI score0.0228EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/01/09 12:41 p.m.9 views

CVE-2023-25754

Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0...

9.8CVSS6.7AI score0.0228EPSS
Exploits0References1
OSV
OSVadded 2024/03/06 10:55 a.m.22 views

BIT-AIRFLOW-2023-25754 Apache Airflow: Privilege escalation using airflow logs

Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0...

9.8CVSS9.4AI score0.0228EPSS
Exploits0References4
Circl
Circladded 2023/05/08 4:51 p.m.2 views

CVE-2023-25754

creationtimestamp| type| source ---|---|--- 2023-05-08 16:51:21+00:00| seen| https://t.me/cibsecurity/63420...

9.8CVSS8.6AI score0.0228EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2023/05/08 2:0 p.m.42 views

Internet Bug Bounty: Privilege Esacalation at Apache Airflow 2.5.1

A vulnerability was found in Apache Airflow before version 2.6.0 that allowed local Linux users to access sensitive files, such as SSH private keys, owned by the account that operates Airflow. The issue was caused by Airflow setting log files to vulnerable privileges, allowing any Linux user on t...

9.8CVSS8.8AI score0.0228EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2023/05/08 12:30 p.m.3 views

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +135 more potentially affected by CVE-2023-25754 via apache-airflow (>=1.8.2 <=2.5.3)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-25754 Source advisory: OSV:GHSA-JCHM-FM4Q-C2FP...

9.8CVSS7.7AI score0.0228EPSS
Exploits0
CVE
CVEadded 2023/05/08 11:57 a.m.85 views

CVE-2023-25754

Apache Airflow prior to 2.6.0 is affected by a Privilege Context Switching Error that can allow a local Linux user to read sensitive files (e.g., SSH keys) by abusing insecure log file permissions. The issue is described as a privilege escalation via log handling. A fix is available in Airflow 2....

9.8CVSS9.4AI score0.0228EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2023/05/08 11:57 a.m.18 views

CVE-2023-25754 Apache Airflow: Privilege escalation using airflow logs

Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0...

9.8AI score0.0228EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2023/05/08 11:57 a.m.10 views

CVE-2023-25754 Apache Airflow: Privilege escalation using airflow logs

Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: before 2.6.0...

9.5AI score0.0228EPSS
Exploits0References3
Rows per page
Query Builder