Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:46 a.m.8 views

CVE-2023-22884

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0...

9.8CVSS6.8AI score0.11082EPSS
Exploits2References1
GithubExploit
GithubExploit
added 2023/07/29 9:26 a.m.763 views

Exploit for Command Injection in Apache Airflow

Apache Airflow SQL injection PoC CVE-2023-22884 PoC for C...

9.8CVSS10AI score0.11082EPSS
Exploits2
GithubExploit
GithubExploit
added 2023/07/29 9:26 a.m.722 views

Exploit for Command Injection in Apache Airflow

Apache Airflow SQL injection PoC CVE-2023-22884 PoC for C...

9.8CVSS10AI score0.11082EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2023/01/21 3:30 p.m.5 views

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +134 more potentially affected by CVE-2023-22884 via apache-airflow (>=1.8.2 <=2.5.0)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-22884 Source advisory: OSV:GHSA-C732-XVV8-G94C...

9.8CVSS7.2AI score0.11082EPSS
Exploits2
NVD
NVD
added 2023/01/21 2:15 p.m.21 views

CVE-2023-22884

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0...

9.8CVSS9.5AI score0.11082EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2023/01/21 1:2 p.m.8 views

CVE-2023-22884 Apache Airflow, Apache Airflow MySQL Provider: Arbitrary file read via MySQL provider in Apache Airflow

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0...

6.8AI score0.11082EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/01/21 1:2 p.m.26 views

CVE-2023-22884 Apache Airflow, Apache Airflow MySQL Provider: Arbitrary file read via MySQL provider in Apache Airflow

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0...

9.7AI score0.11082EPSS
Exploits2References2
CVE
CVE
added 2023/01/21 1:2 p.m.118 views

CVE-2023-22884

CVE-2023-22884 affects Apache Airflow (core) and the Apache Airflow MySQL Provider, with the vulnerability stemming from improper neutralization of input in the LOAD DATA LOCAL INFILE flow, enabling Command Injection. Reported affected versions: Airflow before 2.5.1 and MySQL Provider before 4.0....

9.8CVSS9.5AI score0.11082EPSS
Exploits2References2Affected Software2
OSV
OSV
added 2023/01/21 1:2 p.m.28 views

CVE-2023-22884 Apache Airflow, Apache Airflow MySQL Provider: Arbitrary file read via MySQL provider in Apache Airflow

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0...

9.8CVSS7.2AI score0.11082EPSS
Exploits2References4
Rows per page
Query Builder