CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39553 – Apache Airflow Drill Provider Arbitrary File Read Vulnerability
https://notcve.org/view.php?id=CVE-2023-39553
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server. This issue affects Apache Airflow Drill Provider: before 2.4.3. It is recommended to upgrade to a version that is not affected. • http://www.openwall.com/lists/oss-security/2023/08/11/1 https://github.com/apache/airflow/pull/33074 https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39508 – Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges
https://notcve.org/view.php?id=CVE-2023-39508
Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the webserver context as well as allows to bypas limitation of access the user has to certain DAGs. The "Run Task" feature is considered dangerous and it has been removed entirely in Airflow 2.6.0 This issue affects Apache Airflow: before 2.6.0. • http://seclists.org/fulldisclosure/2023/Jul/43 https://github.com/apache/airflow/pull/29706 https://lists.apache.org/thread/j2nkjd0zqvtqk85s6ywpx3c35pvzyx15 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-250: Execution with Unnecessary Privileges •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37415 – Apache Airflow Apache Hive Provider: Improper Input Validation in Hive Provider with proxy_user
https://notcve.org/view.php?id=CVE-2023-37415
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797 Before 6.1.2 the proxy_user option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updating provider version to 6.1.2 in order to avoid this vulnerability. • http://www.openwall.com/lists/oss-security/2023/07/12/3 https://lists.apache.org/thread/9wx0jlckbnycjh8nj5qfwxo423zvm41k • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-22888 – Apache Airflow: Scheduler remote DoS
https://notcve.org/view.php?id=CVE-2023-22888
Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to cause a service disruption by manipulating the run_id parameter. This vulnerability is considered low since it requires an authenticated user to exploit it. It is recommended to upgrade to a version that is not affected • https://github.com/apache/airflow/pull/32293 https://lists.apache.org/thread/dnlht2hvm7k81k5tgjtsfmk27c76kq7z • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36543 – Apache Airflow: ReDoS via dags function
https://notcve.org/view.php?id=CVE-2023-36543
Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user can use crafted input to make the current request hang. It is recommended to upgrade to a version that is not affected • https://github.com/apache/airflow/pull/32060 https://lists.apache.org/thread/tokfs980504ylgk3cv3hjlnrtbv4tng4 • CWE-1333: Inefficient Regular Expression Complexity •