<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://db.gcve.eu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 19 Jul 2026 05:31:08 +0000</lastBuildDate>
    <item>
      <title>6c954653-6b58-493d-9d61-1499e956f924</title>
      <link>https://db.gcve.eu/sighting/6c954653-6b58-493d-9d61-1499e956f924/export</link>
      <description>{"uuid": "6c954653-6b58-493d-9d61-1499e956f924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17836", "type": "seen", "source": "https://t.me/cibsecurity/2197", "content": "ATENTION\u203c New - CVE-2017-17836\n\nIn Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authenticated cookies, as well as passwords to databases used by Airflow. An attacker who has limited access to airflow, weather it be via XSS or by leaving a machine unlocked can exfil all credentials from the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-01-23T20:21:35.000000Z"}</description>
      <content:encoded>{"uuid": "6c954653-6b58-493d-9d61-1499e956f924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17836", "type": "seen", "source": "https://t.me/cibsecurity/2197", "content": "ATENTION\u203c New - CVE-2017-17836\n\nIn Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authenticated cookies, as well as passwords to databases used by Airflow. An attacker who has limited access to airflow, weather it be via XSS or by leaving a machine unlocked can exfil all credentials from the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-01-23T20:21:35.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/6c954653-6b58-493d-9d61-1499e956f924/export</guid>
      <pubDate>Wed, 23 Jan 2019 20:21:35 +0000</pubDate>
    </item>
    <item>
      <title>6ce3eff9-70af-4214-b03c-4cafaf889ac5</title>
      <link>https://db.gcve.eu/sighting/6ce3eff9-70af-4214-b03c-4cafaf889ac5/export</link>
      <description>{"uuid": "6ce3eff9-70af-4214-b03c-4cafaf889ac5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17835", "type": "seen", "source": "https://t.me/cibsecurity/2198", "content": "ATENTION\u203c New - CVE-2017-17835\n\nIn Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-01-23T20:21:35.000000Z"}</description>
      <content:encoded>{"uuid": "6ce3eff9-70af-4214-b03c-4cafaf889ac5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17835", "type": "seen", "source": "https://t.me/cibsecurity/2198", "content": "ATENTION\u203c New - CVE-2017-17835\n\nIn Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-01-23T20:21:35.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/6ce3eff9-70af-4214-b03c-4cafaf889ac5/export</guid>
      <pubDate>Wed, 23 Jan 2019 20:21:35 +0000</pubDate>
    </item>
    <item>
      <title>9f8478fe-3411-4967-8736-e7617fface97</title>
      <link>https://db.gcve.eu/sighting/9f8478fe-3411-4967-8736-e7617fface97/export</link>
      <description>{"uuid": "9f8478fe-3411-4967-8736-e7617fface97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17833", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/4091", "content": "CVE-2018-12938 &amp;amp; CVE-2017-17833\nhttps://dumpco.re/blog/openslp-2.0.0-double-free", "creation_timestamp": "2018-07-11T17:10:04.000000Z"}</description>
      <content:encoded>{"uuid": "9f8478fe-3411-4967-8736-e7617fface97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-17833", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/4091", "content": "CVE-2018-12938 &amp;amp; CVE-2017-17833\nhttps://dumpco.re/blog/openslp-2.0.0-double-free", "creation_timestamp": "2018-07-11T17:10:04.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/9f8478fe-3411-4967-8736-e7617fface97/export</guid>
      <pubDate>Wed, 11 Jul 2018 17:10:04 +0000</pubDate>
    </item>
  </channel>
</rss>
