Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 12:13 p.m.8 views

CVE-2023-39508

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...

8.8CVSS7.1AI score0.0236EPSS
Exploits0References5
NVD
NVD
added 2023/08/05 7:15 a.m.21 views

CVE-2023-39508

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...

8.8CVSS8.8AI score0.0236EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2023/08/05 7:15 a.m.5 views

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +136 more potentially affected by CVE-2023-39508 via apache-airflow (>=1.8.2 <=2.5.3)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-39508 Source advisory: OSV:PYSEC-2023-134...

8.8CVSS7.2AI score0.0236EPSS
Exploits0
CVE
CVE
added 2023/08/05 6:47 a.m.97 views

CVE-2023-39508

The CVE-2023-39508 issue affects Apache Airflow prior to 2.6.0, where the Run Task feature could be exploited by an authenticated user to execute code in the webserver context and bypass DAG access restrictions, exposing sensitive information and potentially impacting confidentiality, integrity, ...

8.8CVSS8.8AI score0.0236EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/05 6:47 a.m.18 views

CVE-2023-39508 Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...

8.8AI score0.0236EPSS
Exploits0References3
OSV
OSV
added 2023/08/05 6:47 a.m.23 views

CVE-2023-39508 Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...

8.8CVSS7.3AI score0.0236EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/08/05 6:47 a.m.22 views

CVE-2023-39508 Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...

9.1AI score0.0236EPSS
Exploits0References3
Rows per page
Query Builder