Vulnerabilities > CVE-2023-25956 - Unspecified vulnerability in Apache Apache-Airflow-Providers-Amazon

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

apache

NVD

Published: 2023-02-24

Updated: 2024-11-21

Summary

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache Apache Airflow Providers Amazon 1.0.0 Apache Apache Airflow Providers Amazon 1.1.0 Apache Apache Airflow Providers Amazon 1.2.0 Apache Apache Airflow Providers Amazon 1.3.0 Apache Apache Airflow Providers Amazon 1.4.0 Apache Apache Airflow Providers Amazon 2.0.0 Apache Apache Airflow Providers Amazon 2.1.0 Apache Apache Airflow Providers Amazon 2.2.0 Apache Apache Airflow Providers Amazon 2.3.0 Apache Apache Airflow Providers Amazon 2.4.0 Apache Apache Airflow Providers Amazon 2.5.0 Apache Apache Airflow Providers Amazon 2.6.0 Apache Apache Airflow Providers Amazon 3.0.0 Apache Apache Airflow Providers Amazon 3.1.0 Apache Apache Airflow Providers Amazon 3.1.1 Apache Apache Airflow Providers Amazon 3.2.0 Apache Apache Airflow Providers Amazon 3.3.0 Apache Apache Airflow Providers Amazon 3.4.0 Apache Apache Airflow Providers Amazon 4.0.0 Apache Apache Airflow Providers Amazon 4.1.0 Apache Apache Airflow Providers Amazon 5.0.0 Apache Apache Airflow Providers Amazon 5.1.0 Apache Apache Airflow Providers Amazon 6.0.0 Apache Apache Airflow Providers Amazon 6.1.0 Apache Apache Airflow Providers Amazon 6.2.0 Apache Apache Airflow Providers Amazon 7.0.0 Apache Apache Airflow Providers Amazon 7.1.0 Apache Apache Airflow Providers Amazon 7.2.0	64

Summary

Vulnerable Configurations

References