|
3101
|
6.5 |
MEDIUM
Network
|
encode
|
starlette
|
Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated before being used to reconstruct `request.url`. Because the routing algorit…
|
CWE-444
HTTP Request Smuggling
|
CVE-2026-48710
|
2026-06-3 11:14 |
2026-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3102
|
8.5 |
HIGH
Network
|
apache
|
directory_ldap_api
|
It was identified that the LDAP client implementation in version 2.1.7 does not verify if the server certificate matches the intended LDAP
hostname. While the underlying code validates the certifica…
|
CWE-297
Improper Validation of Certificate with Host Mismatch
|
CVE-2026-35563
|
2026-06-3 11:12 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3103
|
8.8 |
HIGH
Network
|
apache
|
airflow
|
A bug in Apache Airflow's XCom PATCH endpoint `PATCH /api/v2/xcomEntries/{key}` allowed an authenticated UI/API user with XCom write permission on a Dag to set XCom entries under reserved key names (…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-42359
|
2026-06-3 11:07 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3104
|
7.3 |
HIGH
Network
|
apache
|
airflow
|
Apache Airflow's scheduler-side deadline-reference decoder (`SerializedCustomReference.deserialize_reference`) imported and dispatched arbitrary class paths drawn from DAG-author-controlled serialize…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-45360
|
2026-06-3 11:06 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3105
|
6.5 |
MEDIUM
Network
|
apache
|
airflow
|
A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logout flow for `FabAuthManager` and `KeycloakAuthManager` …
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-48726
|
2026-06-3 11:06 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3106
|
5.9 |
MEDIUM
Network
|
apache
|
airflow
|
Apache Airflow's EmailOperator and the underlying `airflow.utils.email` helpers established SMTP STARTTLS connections without verifying the remote certificate when the deployment used `[email] smtp_s…
|
CWE-295
Improper Certificate Validation
|
CVE-2026-49267
|
2026-06-3 11:06 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3107
|
8.8 |
HIGH
Network
|
apache
|
airflow
|
A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed to the worker container as command-line arguments visible in …
|
CWE-538
File and Directory Information Exposure
|
CVE-2026-49298
|
2026-06-3 11:06 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3108
|
6.5 |
MEDIUM
Network
|
apache
|
calcite
|
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache Calcite.
This issue affects Apache Calcite: from 1.5.0 before 1.42.
Users are recommended …
|
CWE-470
Unsafe Reflection
|
CVE-2026-46718
|
2026-06-3 11:04 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3109
|
4.3 |
MEDIUM
Network
|
apache
|
kafka
|
An improper authorization vulnerability has been identified in Apache Kafka.
The implementation of the CONSUMER_GROUP_DESCRIBE (69) API validates the DESCRIBE operation on the GROUP resource instead…
|
CWE-285
Improper Authorization
|
CVE-2026-41115
|
2026-06-3 11:04 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3110
|
6.5 |
MEDIUM
Network
|
sharpcompress_project
|
sharpcompress
|
SharpCompress is a fully managed C# library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory() allows a malicious ar…
|
CWE-22
Path Traversal
|
CVE-2026-44788
|
2026-06-3 11:02 |
2026-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
