Lucene search
Veracode Vulnerability DatabaseVERACODE:39793HistoryMar 16, 2023 - 6:18 a.m.
Information Disclosure
2023-03-1606:18:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
apache_airflow
information disclosure
error messages
unauthorized access
sensitive information
0.001 Low
EPSS
Percentile
41.9%
apache_airflow is vulnerable to Information Disclosure. A remote attacker is able to gain access to unauthorized information through error messages via the show_traceback function in views.py, resulting in the disclosure of sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache-airflow | le | 2.5.1 | |
| apache-airflow | le | 1.10.15 | |
| apache-airflow | le | 2.5.1 | |
| apache-airflow | le | 1.10.15 |
Related
cve
cve
CVE-2023-25695
2023-03-15 10:15:09
prion
prion
Information disclosure
2023-03-15 10:15:00
cvelist
cvelist
CVE-2023-25695 Information disclosure in Apache Airflow
2023-03-15 09:37:11
osv
osv
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19
CVE-2023-25695
2023-03-15 10:15:09
PYSEC-2023-2
2023-03-15 10:15:00
github
github
Sensitive Information in Error Messages in Apache Airflow
2023-03-15 12:30:19
nvd
nvd
CVE-2023-25695
2023-03-15 10:15:09
cnvd
cnvd
Apache Airflow Information Disclosure Vulnerability (CNVD-2023-23550)
2023-03-17 00:00:00