Описание
In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on the Airflow webserver by creating a special object.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| airflow | itp | package |
EPSS
Процентиль: 51%
0.00277
Низкий
Связанные уязвимости
CVSS3: 8.8
nvd
около 7 лет назад
In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on the Airflow webserver by creating a special object.
CVSS3: 8.8
github
около 7 лет назад
Improper Input Validation in Apache Airflow resulting in Remote Code Execution
EPSS
Процентиль: 51%
0.00277
Низкий