[prev in list] [next in list] [prev in thread] [next in thread]
List: apache-announce
Subject: CVE-2023-25692: Apache Airflow Google Provider: Google Cloud Sql Provider Denial Of Service
From: Jarek Potiuk <potiuk () apache ! org>
Date: 2023-02-23 17:43:11
Message-ID: 2d85606c-95d9-13d0-028d-2c082056fa38 () apache ! org
[Download RAW message or body]
Severity: low
Description:
Improper Input Validation vulnerability in the Apache Airflow Google Provider.
This issue affects Apache Airflow Google Provider versions before 8.10.0.
Credit:
Xie Jianming of Caiji Sec Team (finder)
References:
https://github.com/apache/airflow/pull/29499
https://airflow.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-25692
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic