Security
Headlines

Headlines Latest CVEs

Headline

GHSA-r2f6-6928-fh8f: Apache Airflow Spark Provider Improper Input Validation vulnerability

Apache Airflow Spark Provider, versions before 4.1.3, is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection giving an opportunity to read files on the Airflow server. It is recommended to upgrade to a version that is not affected.

1 year ago

#vulnerability #apache #git

Apache Airflow Spark Provider Improper Input Validation vulnerability

Moderate severity GitHub Reviewed Published Aug 17, 2023 to the GitHub Advisory Database • Updated Aug 17, 2023

Related news

Apache Airflow Spark Provider, versions before 4.1.3, is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection giving an opportunity to read files on the Airflow server. It is recommended to upgrade to a version that is not affected.

1 year ago

#vulnerability #apache

ghsa: Latest News

GHSA-w5rq-g9r6-vrcg: @dapperduckling/keycloak-connector-server has Reflected XSS Vulnerability in Authentication Flow URL Handling

32 minutes ago

GHSA-q4xm-6fjc-5f6w: sigstore-java has vulnerability with bundle verification

44 minutes ago

GHSA-v7vm-rhmg-8j2r: Password Policy Bypass Vulnerability in Fides Webserver User Accept Invite API

46 minutes ago

GHSA-2xcc-vm3f-m8rw: @lobehub/chat Server Side Request Forgery vulnerability

1 hour ago

GHSA-486g-47cc-8wxf: aiocpa contains credential harvesting code

19 hours ago