Lucene search
K

4 matches found

Circl
Circl
added 2023/08/28 1:14 p.m.4 views

CVE-2023-27604

creationtimestamp| type| source ---|---|--- 2023-08-28 13:14:48+00:00| seen| https://t.me/cibsecurity/69275...

8.8CVSS8.1AI score0.01206EPSS
Exploits0References1
OSV
OSV
added 2023/08/28 8:15 a.m.17 views

CVE-2023-27604

Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via ‘sqoop import --connect’, obtain airflow server permissions, etc. The attacker needs to be logged...

8.8CVSS6.9AI score
Exploits0References2
CVE
CVE
added 2023/08/28 7:47 a.m.102 views

CVE-2023-27604

CVE-2023-27604 affects the Apache Airflow Sqoop Provider, versions before 4.0.0. The weakness allows an authenticated attacker with permissions to create/edit connections to pass parameters via a connection (for example, via sqoop import --connect), enabling remote code execution and obtaining Ai...

8.8CVSS8.5AI score0.01206EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/28 7:47 a.m.29 views

CVE-2023-27604 Apache Airflow Sqoop Provider: Airflow Sqoop Provider RCE Vulnerability

Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via ‘sqoop import --connect’, obtain airflow server permissions, etc. The attacker needs to be logged...

8.7AI score0.01206EPSS
Exploits0References2
Rows per page
Query Builder