Apache Airflow, versions before... CVE-2023-42781

- AV AC AU C I A
发布: 2023-11-12
修订: 2023-11-20

Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to read information about task instances in other DAGs. This is a different issue than CVE-2023-42663 but leading to similar outcome. Users of Apache Airflow are advised to upgrade to version 2.7.3 or newer to mitigate the risk associated with this vulnerability.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息