2 matches found
EUVD-2026-42028
The Bulk Variables API in Apache Airflow called the redactor without passing the variable's key, so the key-based shouldhidevalueforkey check which triggers on secret-suffixed key names like password / token / secret could not fire for JSON-decodable variable values. An authenticated UI/API user...
PT-2011-1225 · Apache +1 · Apache Openoffice +2
Name of the Vulnerable Software and Affected Versions: Apache OpenOffice versions 2.x through 3.x before 3.3 Description: The issue is related to a heap-based buffer overflow in the Impress component of Apache OpenOffice, which can be triggered by a specially crafted Truevision TGA TARGA file. Th...