Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 12:13 p.m.10 views

CVE-2023-39553

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.5AI score0.01776EPSS
Exploits0References5
OSV
OSV
added 2023/08/11 9:30 a.m.38 views

GHSA-MQ4V-6VG4-796C apache-airflow-providers-apache-drill Improper Input Validation vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

8.7CVSS7.3AI score0.01776EPSS
Exploits0References8
OSV
OSV
added 2023/08/11 8:15 a.m.24 views

PYSEC-2023-136

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.6AI score0.01776EPSS
Exploits0References3
OSV
OSV
added 2023/08/11 7:18 a.m.21 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.5CVSS6.7AI score0.01776EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/08/11 7:18 a.m.12 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.3AI score0.01776EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/11 7:18 a.m.40 views

CVE-2023-39553 Apache Airflow Drill Provider Arbitrary File Read Vulnerability

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read fil...

7.6AI score0.01776EPSS
Exploits0References3
CVE
CVE
added 2023/08/11 7:18 a.m.68 views

CVE-2023-39553

CVE-2023-39553 affects Apache Airflow Drill Provider prior to 2.4.3. The vulnerability arises from improper input validation that allows an attacker to pass malicious parameters when establishing a DrillHook connection, enabling read access to files on the Airflow server. CVSS v3.1 metrics indica...

7.5CVSS7.3AI score0.01776EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/04/07 3:15 p.m.45 views

CVE-2023-28707

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.This issue affects Apache Airflow Drill Provider: before 2.3.2...

7.5CVSS7.5AI score0.02062EPSS
Exploits0References3
Rows per page
Query Builder