Описание
Apache Airflow: XSS vulnerability in Task Instance Log/Log Details
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue.
Пакеты
Наименование
apache-airflow
pip
Затронутые версииВерсия исправления
= 2.9.0
2.9.1
Связанные уязвимости
CVSS3: 5.4
nvd
больше 1 года назад
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue.
CVSS3: 5.4
debian
больше 1 года назад
Apache Airflow version 2.9.0 has a vulnerability that allows an authen ...