Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/07/28 4:32 a.m.12 views

CVE-2025-54415

dag-factory is a library for Apache Airflow® to construct DAGs declaratively via configuration files. In versions 0.23.0a8 and below, a high-severity vulnerability has been identified in the cicd.yml workflow within the astronomer/dag-factory GitHub repository. The workflow, specifically when...

10CVSS8.1AI score0.00631EPSS
Exploits0References1
NVD
NVD
added 2025/07/26 4:16 a.m.5 views

CVE-2025-54415

dag-factory is a library for Apache Airflow® to construct DAGs declaratively via configuration files. In versions 0.23.0a8 and below, a high-severity vulnerability has been identified in the cicd.yml workflow within the astronomer/dag-factory GitHub repository. The workflow, specifically when...

10CVSS0.00631EPSS
Exploits0References4
OSV
OSV
added 2025/07/26 3:33 a.m.6 views

CVE-2025-54415 dag-factory's CI/CD Workflow Allows for Repository Takeover and Secret Exfiltration

dag-factory is a library for Apache Airflow® to construct DAGs declaratively via configuration files. In versions 0.23.0a8 and below, a high-severity vulnerability has been identified in the cicd.yml workflow within the astronomer/dag-factory GitHub repository. The workflow, specifically when...

10CVSS7.9AI score0.00631EPSS
Exploits0References6
NVD
NVD
added 2022/01/12 8:15 p.m.18 views

CVE-2022-20617

Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to control the contents of a previously configured job's SCM repository...

8.8CVSS0.02277EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/01/12 7:5 p.m.27 views

CVE-2022-20617

Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to control the contents of a previously configured job's SCM repository...

8.8AI score0.02277EPSS
Exploits0References2
Rows per page
Query Builder