Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user can use crafted input to make the current request hang. It is recommended to upgrade to a version that is not ...
Continue Reading
July 12, 2023
SpringEL injection in the server agent in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7.Read ...
Continue Reading
July 12, 2023
Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unauthorized actor to gain access to sensitive information in Connection edit view. This vulnerability is considere ...
Continue Reading
July 12, 2023
Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to cause a service disruption by manipulating the run_id parameter. This vulnerability is considered low s ...
Continue Reading
July 12, 2023
Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the ...
Continue Reading
July 12, 2023
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.Read More ...
Continue Reading
July 12, 2023
In libimpl-ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.Read More ...
Continue Reading
July 12, 2023
In telephony service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.Read More ...
Continue Reading
July 12, 2023
Back to Main
