Lucene search
K

6 matches found

OSV
OSV
added 2026/02/16 4:15 a.m.7 views

CVE-2026-2532

A vulnerability was detected in lintsinghua DeepAudit up to 3.0.3. This issue affects some unknown processing of the file backend/app/api/v1/endpoints/embeddingconfig.py of the component IP Address Handler. Performing a manipulation results in server-side request forgery. It is possible to initia...

9.8CVSS5.2AI score
Exploits0References8
OSV
OSV
added 2025/10/01 2:39 p.m.2 views

BIT-AIRFLOW-2025-54831 Apache Airflow: Connection sensitive details exposed to users with READ permissions

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connection fields to Connection Editing Users, effectively applying a "write-only" model for sensitive values. In Airflow 3.0.3, this model was...

6.5CVSS6.5AI score0.00903EPSS
Exploits0References3
PyPA
PyPA
added 2025/09/26 8:15 a.m.11 views

PYSEC-2025-85

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connection fields to Connection Editing Users, effectively applying a "write-only" model for sensitive values.In Airflow 3.0.3, this model was unintentional...

6.5CVSS8AI score0.00903EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/26 7:28 a.m.3 views

CVE-2025-54831 Apache Airflow: Connection sensitive details exposed to users with READ permissions

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connection fields to Connection Editing Users, effectively applying a "write-only" model for sensitive values. In Airflow 3.0.3, this model was...

6.1AI score0.00903EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/26 7:28 a.m.10 views

CVE-2025-54831 Apache Airflow: Connection sensitive details exposed to users with READ permissions

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to sensitive connection fields to Connection Editing Users, effectively applying a "write-only" model for sensitive values. In Airflow 3.0.3, this model was...

0.00903EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/25 12:0 a.m.6 views

PT-2023-24882 · Itop +1 · Itop +1

Name of the Vulnerable Software and Affected Versions: iTop versions prior to 3.0.4 and 3.1.0 Description: iTop is an open source, web-based IT service management platform. Cross site scripting is possible on pages/UI.php in versions prior to 3.0.4 and 3.1.0. Recommendations: For versions prior t...

9.8CVSS6.9AI score0.25573EPSS
Exploits11References67
Rows per page
Query Builder