Apache-airflow-providers-apache-hive@* Security Vulnerabilities and Issues — Apache-airflow-providers-apache-hive@* CVE List

Lucene search

ApacheApache-airflow-providers-apache-hive*

3 matches found

CVE•added 2023/07/03 10:15 a.m.•116 views

CVE-2023-35797

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache Airflow Apache Hive Provider: before 6.1.1. Before version 6.1.1 it was possible to bypass the security check to RCE viaprincipal parameter. For this to be exploited it requi...

9.8CVSS9.2AI score0.00743EPSS

CVE•added 2023/02/24 12:15 p.m.•47 views

CVE-2023-25696

Improper Input Validation vulnerability in the Apache Airflow Hive Provider. This issue affects Apache Airflow Hive Provider versions before 5.1.3.

9.8CVSS9.5AI score0.00483EPSS

CVE•added 2023/07/13 8:15 a.m.•47 views

CVE-2023-37415

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797Before 6.1.2 the proxy_user option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updating ...

8.8CVSS9.1AI score0.00743EPSS