CVE-2026-32289 vulnerabilities

Vulnerabilities for packages: kube-arangodb, redpanda, kubescape-operator, hubble-ui, caddy, harbor, step-ca, step-kms-plugin, terraform-provider-sendgrid, buildah, kserve-modelmesh-serving, prometheus-operator, dbmate, vault-benchmark, crossplane-provider-azure-sql, go-discover,...

CVE-2023-25956

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

EUVD-2023-0810

Malicious code in bioql PyPI...

PT-2023-36264 · Hashicorp · Terraform-Provider-Aws

Name of the Vulnerable Software and Affected Versions: terraform-provider-aws affected versions not specified Description: The issue is related to a security release in the Go programming language, version 1.21. The terraform-provider-aws package has been rebuilt to incorporate this security...

Apache Airflow AWS Provider Information Disclosure Vulnerability

Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. An information disclosure vulnerability exists in Apache Airflow AWS Provider...

GHSA-W695-P3J5-HRJ9 Apache Airflow AWS Provider Generates Error Message Containing Sensitive Information

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

Apache Airflow AWS Provider Generates Error Message Containing Sensitive Information

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

CVE-2023-25956

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

CVE-2023-25956

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

Information disclosure

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

CVE-2023-25956 Apache Airflow AWS Provider: Arbitrary file read via AWS provider

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

CVE-2023-25956

The CVE-2023-25956 issue is a vulnerability in the Apache Airflow AWS Provider (pre-7.2.1) described as a generation of an error message that contains sensitive information, leading to information disclosure. Multiple connected sources corroborate affected versions (

HashiCorp Terraform Amazon Web Services provider fixed password generation vulnerability

HashiCorp Terraform Amazon Web Services AWS provider is a program for interacting with AWS supported resources. A security vulnerability exists in the aws/resourceawsiamuserloginprofile.go file in HashiCorp Terraform AWS provider version 1.12.0 and earlier. A remote attacker can exploit this...

CVE-2018-9057

aws/resourceawsiamuserloginprofile.go in the HashiCorp Terraform Amazon Web Services AWS provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password...

CVE-2018-9057

aws/resourceawsiamuserloginprofile.go in the HashiCorp Terraform Amazon Web Services AWS provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password...