Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:30 p.m.4 views

CVE-2022-40604

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction...

7.5CVSS7.4AI score0.01573EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/09/22 10:40 p.m.4 views

abi-ds-utils (=1.0.1), airflow-add-ons (=0.2.9b1) +4 more potentially affected by CVE-2022-40604 via apache-airflow (>=2.3.2 <=2.4.0)

apache-airflow PYPI version =2.3.2, =0.1.0, =0.1.0, =0.10.0.1 Source cves: CVE-2022-40604 Source advisory: OSV:GHSA-5RP4-749P-VX26...

7.5CVSS7.1AI score0.01573EPSS
Exploits0
Circl
Circl
added 2022/09/21 12:40 p.m.9 views

CVE-2022-40604

creationtimestamp| type| source ---|---|--- 2022-09-21 12:40:39+00:00| seen| https://t.me/cibsecurity/50178 2025-01-18 17:08:37+00:00| seen| https://bsky.app/profile/securitycipher.bsky.social/post/3lfzsdzfmqo2v...

7.5CVSS7.3AI score0.01573EPSS
Exploits0References2
Hacker One
Hacker One
added 2022/09/21 12:5 p.m.9 views

Internet Bug Bounty: CVE-2022-40604: Apache Airflow: Format String Vulnerability

There is a format string vulnerability in Apache Airflow versions 2.3.0 through 2.3.4 in the src/airflow/utils/log/filetaskhandler.py file. The vulnerability was caused by unnecessary formatting of a URL, which could allow for information extraction...

7.5CVSS6.4AI score0.01573EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/21 8:15 a.m.6 views

abi-ds-utils (=1.0.1), airflow-add-ons (=0.2.9b1) +4 more potentially affected by CVE-2022-40604 via apache-airflow (>=2.3.2 <=2.4.0)

apache-airflow PYPI version =2.3.2, =0.1.0, =0.1.0, =0.10.0.1 Source cves: CVE-2022-40604 Source advisory: OSV:PYSEC-2022-279...

7.5CVSS7.1AI score0.01573EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/09/21 7:25 a.m.4 views

CVE-2022-40604 Format String Vulnerability

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction...

6.5AI score0.01573EPSS
Exploits0References2
CVE
CVE
added 2022/09/21 7:25 a.m.95 views

CVE-2022-40604

CVE-2022-40604 affects Apache Airflow 2.3.0–2.3.4. A component of a URL was unnecessarily formatted, enabling information disclosure from a formatted URL. Multiple sources (NVD, OSV entries, and third‑party advisories) corroborate a format-string/vulnerability in the URL handling path (notably in...

7.5CVSS7.4AI score0.01573EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder