CVE-2023-37415

CVSS V2 None CVSS V3 None
Description
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797 Before 6.1.2 the proxy_user option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updating provider version to 6.1.2 in order to avoid this vulnerability.
Overview
  • CVE ID
  • CVE-2023-37415
  • Assigner
  • apache
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-07-13T07:35:33.474Z
  • Last Modified Date
  • 2023-07-13T07:35:33.474Z
History
Created Old Value New Value Data Type Notes
2024-06-25 00:41:35 Added to TrackCVE