All 4 CVE vulnerabilities found in Apache Airflow Spark Provider, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-40195 | Apache Airflow Spark Provider Deserialization Vulnerability RCE CWE-502 | 8.0 | - | 2023-08-28 |
| CVE-2023-40272 | Apache Airflow Spark Provider Arbitrary File Read via JDBC CWE-20 | 7.5 | - | 2023-08-17 |
| CVE-2023-28710 | Apache Airflow Spark Provider Arbitrary File Read via JDBC CWE-20 | - | - | 2023-04-07 |
| CVE-2022-40954 | Apache Airflow Spark Provider RCE that bypass restrictions to read arbitrary files CWE-78 | 5.5 | - | 2022-11-22 |
All 4 known CVE vulnerabilities affecting Apache Airflow Spark Provider with full Chinese analysis, references, and POCs where available.