Rewterz Threat Advisory – Multiple WordPress Plugin Vulnerabilities
March 27, 2023Rewterz Threat Alert – AZORult Malware – Active IOCs
March 27, 2023Rewterz Threat Advisory – Multiple WordPress Plugin Vulnerabilities
March 27, 2023Rewterz Threat Alert – AZORult Malware – Active IOCs
March 27, 2023Severity
Medium
Analysis Summary
CVE-2023-25695
Apache Airflow could allow a remote attacker to obtain sensitive information, caused by the contentment of sensitive information in the error message. By gaining access to the error message, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-25695
Affected Vendors
Apache
Affected Products
- Apache Airflow 2.5.1
Remediation
Upgrade to the latest version of Apache Airflow, available from the Apache Website.