Lucene search
ApacheCVE-2023-25692HistoryFeb 24, 2023 - 12:15 p.m.
CVE-2023-25692
2023-02-2412:15:30
CWE-20
apache
web.nvd.nist.gov
82
2
cve-2023-25692
improper input validation
apache airflow
google provider
nvd
vulnerability
security
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
55.0%
Improper Input Validation vulnerability in the Apache Airflow Google Provider.
This issue affects Apache Airflow Google Provider versions before 8.10.0.
Affected configurations
Node
apacheapache-airflow-providers-googleRange<8.10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apache | apache-airflow-providers-google | * | cpe:2.3:a:apache:apache-airflow-providers-google:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Airflow Google Provider",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "8.10.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]References
Social References
More
Related
hackerone
hackerone
prion
prion
Input validation
2023-02-24 12:15:00
osv
osv
CVE-2023-25692
2023-02-24 12:15:30
Apache Airflow Google Provider Improper Input Validation vulnerability
2023-02-24 12:31:20
nvd
nvd
CVE-2023-25692
2023-02-24 12:15:30
veracode
veracode
Denial Of Service (DoS)
2023-02-28 10:27:10
github
github
Apache Airflow Google Provider Improper Input Validation vulnerability
2023-02-24 12:31:20
cnvd
cnvd
cvelist
cvelist
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
55.0%
Related for CVE-2023-25692