[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2023-25693: Sqoop Apache Airflow Provider Remote Code Execution Vulnerability
From: Jarek Potiuk <potiuk () apache ! org>
Date: 2023-02-23 17:43:54
Message-ID: 6352d70e-c156-fb64-6b03-ca3f89331f88 () apache ! org
[Download RAW message or body]
Severity: moderate
Description:
Improper Input Validation vulnerability in the Apache Airflow Sqoop Provider.
This issue affects Apache Airflow Sqoop Provider versions before 3.1.1.
Credit:
L3yx of Syclover Security Team (finder)
References:
https://github.com/apache/airflow/pull/29500
https://airflow.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-25693
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic