Apache Airflow Hive Provider Beeline RCE with Principal
CVE-2023-35797

9.8CRITICAL

Key Information:

Vendor: Apache
Status: Apache Airflow Apache Hive Provider
Vendor: CVE Published:; 3 July 2023

Summary

The Apache Airflow Hive Provider prior to version 6.1.1 contains an improper input validation vulnerability that allows an attacker to bypass security checks and potentially execute remote code through the manipulation of the principal parameter. This exploit requires access to modify connection details, highlighting the importance of securing these configurations. To mitigate this risk, it is crucial to update to version 6.1.1 or later.

Affected Version(s)

Apache Airflow Apache Hive Provider 0 < 6.1.1

References

https://github.com/apache/airflow/pull/31983

patch

https://lists.apache.org/thread/30y19ok07fw52x5hnkbhwqo3h...

vendor-advisory

http://www.openwall.com/lists/oss-security/2023/07/12/3

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 3, 2023
Vulnerability Reserved
Jun 17, 2023

Credit

id_No2015429 of 3H Secruity Team