[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2023-25696: Apache Airflow Hive Provider Beeline RCE
From: Jarek Potiuk <potiuk () apache ! org>
Date: 2023-02-23 17:45:35
Message-ID: 377ad636-7363-ead2-b0e2-ccfc532a6f96 () apache ! org
[Download RAW message or body]
Severity: moderate
Description:
Improper Input Validation vulnerability in the Apache Airflow Hive Provider.
This issue affects Apache Airflow Hive Provider versions before 5.1.3.
Credit:
id_No2015429 of 3H Secruity Team (finder)
References:
https://github.com/apache/airflow/pull/29502
https://airflow.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-25696
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic