Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2026-42526
- EPSS 0.41%
- Veröffentlicht 19.05.2026 19:17:51
- Zuletzt bearbeitet 02.07.2026 16:36:03
In the AWS Secrets Manager and SSM Parameter Store secrets backends of `apache-airflow-providers-amazon` prior to 9.28.0, the team-scoping logic could resolve a `conn_id` containing a `/` (e.g. `"my_team/conn"`) to the same path as another team's tea...
5.4
CVE-2026-25604
- EPSS 0.36%
- Veröffentlicht 09.03.2026 10:39:05
- Zuletzt bearbeitet 02.07.2026 16:35:27
In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client and not verified against the actual instance URL. This allowed to gain access to different instances with potentially different access controls by reu...
7.5
CVE-2023-25956
- EPSS 1.5%
- Veröffentlicht 24.02.2023 12:15:30
- Zuletzt bearbeitet 21.11.2024 07:50:30
Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1.
1