Request a Demo
Rewterz
Rewterz Threat Advisory – CVE-2023-25813 – Node.js sequelize module Vulnerability
February 24, 2023
Rewterz
Rewterz Threat Advisory – CVE-2023-25621 – Apache Sling Vulnerability
February 24, 2023

Rewterz Threat Advisory – Multiple Apache Airflow Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-25691 CVSS:9.8

Apache Airflow Google Provider could allow a remote attacker to execute arbitrary commands on the system, caused by improper input validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system.

CVE-2023-25692 CVSS:7.5

Apache Airflow Google Provider is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.

CVE-2023-25693 CVSS:9.8

Apache Airflow Sqoop Provider could allow a remote attacker to execute arbitrary code on the system, caused by improper input validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2023-25696 CVSS:9.8

Apache Airflow Hive Provider could allow a remote attacker to execute arbitrary code on the system, caused by improper input validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2023-25956 CVSS:7.5

Apache Airflow AWS Provider could allow a remote attacker to obtain sensitive information, caused by the generation of sensitive information in error message. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

Impact

  • Command Execution
  • Denial of Service
  • Code Execution
  • Information Disclosure

Indicators Of Compromise

CVE

  • CVE-2023-25691
  • CVE-2023-25692
  • CVE-2023-25693
  • CVE-2023-25696
  • CVE-2023-25956

Affected Vendors

Apache

Affected Products

  • Apache Airflow Google Provider 8.9.0
  • Apache Airflow Sqoop Provider 3.1.0
  • Apache Airflow Hive Provider 5.1.2
  • Apache Airflow AWS Provider 7.2.0

Remediation

Upgrade to the latest version of Apache Airflow Google Provider, available from the Apache Airflow GIT Repository.

CVE-2023-25691

CVE-2023-25692

CVE-2023-25693

CVE-2023-25696

CVE-2023-25956