CVE-2019-0229

Опубликовано: 10 апр. 2019

Источник: debian

Описание

A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have adequate protection and were vulnerable to cross-site request forgery attacks.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
airflow	itp			package

Связанные уязвимости

CVE-2019-0229

CVSS3: 8.8

nvd

почти 7 лет назад

A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have adequate protection and were vulnerable to cross-site request forgery attacks.

GHSA-w6j4-3gh2-9f5j

CVSS3: 8.8

github

почти 7 лет назад

Apache Airflow vulnerable to CSRF Attacks