Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2025/10/30 12:31 p.m.4 views

airflow-balancer (>=0.7.0 <=0.7.6), airflow-clickhouse-plugin (=1.5.0) +21 more potentially affected by CVE-2025-62503 via apache-airflow-core (>=3.0.0 <=3.1.0rc2)

apache-airflow-core PYPI version =3.0.0, =0.7.0, =0.6.1, =1.10.7, =0.1.0, =1.4.3, =1.2.10, =0.1.1, =3.0.0, =1.6.0, =1.5.3, =1.25.0, =3.12.0, =0.0.4, =2.0.2, =2.3.0rc1 and more Source cves: CVE-2025-62503 Source advisory: SNYK:PYTHON-APACHEAIRFLOWCORE-13786420...

4.6CVSS5.7AI score0.00396EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/10/30 12:31 p.m.4 views

airflow-balancer (>=0.7.0 <=0.7.6), airflow-clickhouse-plugin (=1.5.0) +21 more potentially affected by CVE-2025-62503 via apache-airflow (>=3.0.0 <=3.1.0rc2)

apache-airflow PYPI version =3.0.0, =0.7.0, =0.6.1, =1.10.7, =0.1.0, =1.4.3, =1.2.10, =0.1.1, =3.0.0, =1.6.0, =1.5.3, =1.25.0, =3.12.0, =0.0.4, =2.0.2, =2.3.0rc1 and more Source cves: CVE-2025-62503 Source advisory: OSV:GHSA-GP5F-CX7H-8Q6F...

4.6CVSS5.7AI score0.00396EPSS
Exploits0
NVD
NVD
added 2025/10/30 10:15 a.m.7 views

CVE-2025-62503

User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite action...

4.6CVSS0.00396EPSS
Exploits0References2
OSV
OSV
added 2025/10/30 9:11 a.m.6 views

CVE-2025-62503 Apache Airflow: Privilege boundary bypass in bulk APIs (create action can upsert existing Pools/Connections/Variables)

User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite action...

4.6CVSS5.9AI score0.00396EPSS
Exploits0References5
Rows per page
Query Builder