CVE-2022-46421
published 2022-12-20CVE-2022-46421: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow Hive…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache Airflow Hive Provider: before 5.0.0.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | apache-airflow-providers-apache-hive | < 5.0.0 | 5.0.0 |
| apache | apache-airflow-providers-apache-hive | >= 0 < 5.0.0 | 5.0.0 |
| apache_software_foundation | apache_airflow_hive_provider | < 5.0.0 | 5.0.0 |