CVE-2023-28706
published 2023-04-07CVE-2023-28706: Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache Airflow Hive Provider: before 6.0.0.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | airflow_hive_provider | < 6.0.0 | 6.0.0 |
| apache | apache-airflow-providers-apache-hive | >= 0 < 6.0.0 | 6.0.0 |
| apache_software_foundation | apache_airflow_hive_provider | < 6.0.0 | 6.0.0 |