CVE-2022-43982

Опубликовано: 02 нояб. 2022

Источник: debian

Описание

In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the `origin` query argument.

Пакет	Статус	Версия исправления	Релиз	Тип
airflow	itp			package

CVE-2022-43982

CVSS3: 6.1

nvd

больше 3 лет назад

In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the `origin` query argument.

GHSA-h63r-9xxf-f2c7

CVSS3: 6.1

github

больше 3 лет назад

Apache Airflow Cross-site Scripting vulnerability