CVE-2017-17835

Опубликовано: 23 янв. 2019

Источник: debian

Описание

In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.

Пакет	Статус	Версия исправления	Релиз	Тип
airflow	itp			package

CVE-2017-17835

CVSS3: 8.8

nvd

около 7 лет назад

In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.

GHSA-68wv-rjrm-576p

CVSS3: 8.8

github

около 7 лет назад

Cross-Site Request Forgery (CSRF) in Apache Airflow