Количество 3
Количество 3
CVE-2024-45034
Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add local settings to the DAG folder and get it executed by the scheduler, where the scheduler is not supposed to execute code submitted by the DAG author. Users are advised to upgrade to version 2.10.1 or later, which has fixed the vulnerability.
CVE-2024-45034
Apache Airflow versions before 2.10.1 have a vulnerability that allows ...
GHSA-92xg-gmrq-5c3w
Apache Airflow vulnerable to Execution with Unnecessary Privileges
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-45034 Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add local settings to the DAG folder and get it executed by the scheduler, where the scheduler is not supposed to execute code submitted by the DAG author. Users are advised to upgrade to version 2.10.1 or later, which has fixed the vulnerability. | CVSS3: 8.8 | 3% Низкий | больше 1 года назад |
| CVE-2024-45034 Apache Airflow versions before 2.10.1 have a vulnerability that allows ... | CVSS3: 8.8 | 3% Низкий | больше 1 года назад |
| GHSA-92xg-gmrq-5c3w Apache Airflow vulnerable to Execution with Unnecessary Privileges | CVSS3: 8.8 | 3% Низкий | больше 1 года назад |
Уязвимостей на страницу