Lucene search
K

7 matches found

OSV
OSV
added 3 days ago4 views

PYSEC-2026-1150 Apache Airflow ODBC Provider, Apache Airflow MSSQL Provider Improper Input Validation vulnerability

Input Validation vulnerability in Apache Software Foundation Apache Airflow ODBC Provider, Apache Software Foundation Apache Airflow MSSQL Provider.This vulnerability is considered low since it requires DAG code to use getsqlalchemyconnection and someone with access to connection resources...

4.3CVSS6AI score0.01263EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2023-1863

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.01263EPSS
Exploits0References5
NVD
NVD
added 2023/06/27 12:15 p.m.28 views

CVE-2023-35798

Input Validation vulnerability in Apache Software Foundation Apache Airflow ODBC Provider, Apache Software Foundation Apache Airflow MSSQL Provider.This vulnerability is considered low since it requires DAG code to use getsqlalchemyconnection and someone with access to connection resources...

4.3CVSS4.7AI score0.01263EPSS
Exploits0References2
CVE
CVE
added 2023/06/27 11:39 a.m.113 views

CVE-2023-35798

The CVE affects Apache Airflow ODBC Provider (before 4.0.0) and Apache Airflow MSSQL Provider (before 3.4.1). The issue is an input-validation/arbitrary file-read vulnerability exposed when DAG code uses get_sqlalchemy_connection, allowing access to files via resource updates. Impact is described...

4.3CVSS4.5AI score0.01263EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/06/27 11:39 a.m.32 views

CVE-2023-35798 Airflow Apache ODBC and MSSQL Providers Arbitrary File Read Vulnerability

Input Validation vulnerability in Apache Software Foundation Apache Airflow ODBC Provider, Apache Software Foundation Apache Airflow MSSQL Provider.This vulnerability is considered low since it requires DAG code to use getsqlalchemyconnection and someone with access to connection resources...

5AI score0.01263EPSS
Exploits0References2
OSV
OSV
added 2023/06/27 11:39 a.m.12 views

CVE-2023-35798 Airflow Apache ODBC and MSSQL Providers Arbitrary File Read Vulnerability

Input Validation vulnerability in Apache Software Foundation Apache Airflow ODBC Provider, Apache Software Foundation Apache Airflow MSSQL Provider.This vulnerability is considered low since it requires DAG code to use getsqlalchemyconnection and someone with access to connection resources...

4.3CVSS6AI score0.01263EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/06/26 12:0 a.m.6 views

PT-2023-3656

Name of the Vulnerable Software and Affected Versions Apache Airflow ODBC Provider versions prior to 4.0.0 Apache Airflow MSSQL Provider versions prior to 3.4.1 Description The issue is related to insufficient input validation in the Apache Airflow MSSQL Provider and Airflow ODBC Provider modules...

4.3CVSS6.1AI score0.01263EPSS
Exploits0References14
Rows per page
Query Builder