Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 12:13 p.m.10 views

CVE-2023-39553

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.5AI score0.01776EPSS
Exploits0References5
OSV
OSV
added 2023/08/11 9:30 a.m.10 views

GHSA-MQ4V-6VG4-796C apache-airflow-providers-apache-drill Improper Input Validation vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

8.7CVSS7.3AI score0.01776EPSS
Exploits0References8
PyPA
PyPA
added 2023/08/11 8:15 a.m.7 views

PYSEC-2023-136

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read file...

7.5CVSS6.7AI score0.01776EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/08/11 8:15 a.m.24 views

PYSEC-2023-136

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.6AI score0.01776EPSS
Exploits0References3
CVE
CVE
added 2023/08/11 7:18 a.m.66 views

CVE-2023-39553

CVE-2023-39553 affects Apache Airflow Drill Provider prior to 2.4.3. The vulnerability arises from improper input validation that allows an attacker to pass malicious parameters when establishing a DrillHook connection, enabling read access to files on the Airflow server. CVSS v3.1 metrics indica...

7.5CVSS7.3AI score0.01776EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/08/11 7:18 a.m.21 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.7AI score0.01776EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/08/11 7:18 a.m.12 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.3AI score0.01776EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/11 7:18 a.m.30 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.6AI score0.01776EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.3 views

PT-2023-4419

Name of the Vulnerable Software and Affected Versions Apache Airflow Drill Provider versions prior to 2.4.3 Description The issue is related to improper input validation in Apache Airflow Drill Provider, allowing an attacker to pass malicious parameters when establishing a connection with...

8.7CVSS6.7AI score0.01776EPSS
Exploits0References20
NVD
NVD
added 2023/04/07 3:15 p.m.44 views

CVE-2023-28707

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.This issue affects Apache Airflow Drill Provider: before 2.3.2...

7.5CVSS7.5AI score0.02062EPSS
Exploits0References3
OSV
OSV
added 2023/04/07 2:53 p.m.13 views

CVE-2023-28707 Airflow Apache Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.This issue affects Apache Airflow Drill Provider: before 2.3.2...

7.5CVSS7.1AI score0.02062EPSS
Exploits0References5
Rows per page
Query Builder