Lucene search
+L

6 matches found

EUVD
EUVD
added 2 days ago6 views

EUVD-2026-44604

A SQL Injection vulnerability exists in Apache Fineract's Report Execution API runreports endpoint in versions up to and including 1.14.0. Report parameter values are incorporated into the generated SQL query without sufficient validation, allowing an authenticated user with permission to run...

8.8CVSS6.2AI score0.03492EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/01 7:34 a.m.15 views

EUVD-2026-33580

A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed to the worker container as command-line arguments visible in the pod spec. An authenticated UI/API user with Kubernetes read-only access to the cluster e.g...

8.7CVSS5.8AI score0.00489EPSS
Exploits0References2
OSV
OSV
added 2026/03/18 8:39 a.m.5 views

BIT-AIRFLOW-2026-30911 Apache Airflow: Execution API HITL Endpoints Missing Per-Task Authorization

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop HITL endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance. Users are recommended to upgrade to...

8.1CVSS5.8AI score0.00409EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/17 12:30 p.m.9 views

EUVD-2026-12566

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop HITL endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance. Users are recommended to upgrade to...

8.1CVSS5.8AI score0.00409EPSS
Exploits0References3
PyPA
PyPA
added 2026/03/17 11:16 a.m.12 views

PYSEC-2026-17

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop HITL endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance.Users are recommended to upgrade to...

8.1CVSS5.8AI score0.00409EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-8910

Malware in sbrugna...

9CVSS8.8AI score0.02644EPSS
Exploits1References2
Rows per page
Query Builder