2 matches found
CVE-2023-28706
CVE-2023-28706 affects Apache Airflow Hive Provider before 6.0.0 and is caused by improper control of code generation (code injection). The vulnerability can impact confidentiality, integrity, and availability; CVSS v3.1 base score 9.8. Remediation: upgrade to 6.0.0 or later. Some sources label i...
CVE-2023-28706 Apache Airflow Hive Provider Beeline Remote Command Execution
Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache Airflow Hive Provider: before 6.0.0...