3 matches found
abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +163 more potentially affected by CVE-2026-25917 via apache-airflow (>=1.8.2 <=3.1.8)
apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.1, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =1.6.0 and more Source cves: CVE-2026-25917 Source advisory: OSV:PYSEC-2026-13...
CVE-2026-25917
creationtimestamp| type| source ---|---|--- 2026-04-17 16:51:48+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mjpf3wafbc24 2026-04-18 08:33:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjqzp5iqqn2f 2026-04-20 17:21:16+00:00| seen|...
PT-2026-33583
Name of the Vulnerable Software and Affected Versions Apache Airflow versions prior to 3.2.0 Description Dag Authors can craft an XCom payload that allows the webserver to execute arbitrary code, bypassing the restriction that normally prevents them from executing code in the webserver context...