Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Prion
Prionadded 2023/07/13 8:15 a.m.14 views

Input validation

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797 Before 6.1.2 the proxyuser option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updatin...

6.5CVSS9.1AI score0.02125EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2023/07/13 7:35 a.m.15 views

CVE-2023-37415 Apache Airflow Apache Hive Provider: Improper Input Validation in Hive Provider with proxy_user

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797 Before 6.1.2 the proxyuser option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updatin...

9.4AI score0.01151EPSS
Exploits0References2
CVE
CVEadded 2023/07/13 7:35 a.m.69 views

CVE-2023-37415

CVE-2023-37415 is an Improper Input Validation vulnerability affecting the Apache Airflow Hive Provider (versions before 6.1.2). The issue arises from input validation around the proxy_user option, which can permit semicolon injection, enabling an attacker to impact confidentiality, integrity, an...

8.8CVSS9.1AI score0.02125EPSS
Exploits0References2Affected Software1
Circl
Circladded 2023/07/03 2:22 p.m.2 views

CVE-2023-35797

creationtimestamp| type| source ---|---|--- 2023-07-03 14:22:26+00:00| seen| https://t.me/cibsecurity/65857 2025-02-13 19:21:09+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4332...

9.8CVSS8.6AI score0.02125EPSS
Exploits0References2
NVD
NVDadded 2023/07/03 10:15 a.m.20 views

CVE-2023-35797

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Hive Provider. This issue affects Apache Airflow Apache Hive Provider: before 6.1.1. Before version 6.1.1 it was possible to bypass the security check to RCE via principal parameter. For this to be exploited it...

9.8CVSS8.7AI score0.02125EPSS
Exploits0References3
OSV
OSVadded 2023/07/03 10:15 a.m.12 views

CVE-2023-35797

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Hive Provider. This issue affects Apache Airflow Apache Hive Provider: before 6.1.1. Before version 6.1.1 it was possible to bypass the security check to RCE via principal parameter. For this to be exploited it...

9.8CVSS9.1AI score
Exploits0References3
CVE
CVEadded 2023/07/03 9:8 a.m.133 views

CVE-2023-35797

CVE-2023-35797 affects Apache Airflow Hive Provider prior to 6.1.1 and is an Improper Input Validation vulnerability that can enable remote code execution via the principal parameter when connection details are modifiable. The issue is mitigated by upgrading the provider to version 6.1.1 or later...

9.8CVSS9.2AI score0.02125EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder