Lucene search
China National Vulnerability DatabaseCNVD-2022-69471HistorySep 24, 2022 - 12:00 a.m.
Apache Airflow Open Redirect Vulnerability
2022-09-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
apache airflow
open source
workflows
web server
vulnerability
phishing
attacks
apache foundation
version 2.3.0 - 2.3.4
redirection
EPSS
0.002
Percentile
54.6%
Apache Airflow is an open source platform for creating, managing and monitoring workflows from the Apache Foundation. Apache Airflow versions 2.3.0 to 2.3.4 have an open redirection vulnerability, which originates from the /confirm port of the web server does not do a reasonable job on the target jump, an attacker can use the vulnerability to redirect users to malicious websites to engage in phishing and other attacks.
Related
veracode
veracode
Open Redirect
2022-09-23 08:30:25
cve
cve
CVE-2022-40754
2022-09-21 08:15:08
osv
osv
Apache Airflow contains open redirect
2022-09-22 22:39:52
BIT-airflow-2022-40754
2024-03-06 10:57:05
PYSEC-2022-280
2022-09-21 08:15:00
nvd
nvd
CVE-2022-40754
2022-09-21 08:15:08
github
github
Apache Airflow contains open redirect
2022-09-22 22:39:52
prion
prion
Open redirect
2022-09-21 08:15:00
cvelist
cvelist
CVE-2022-40754 Open Redirect
2022-09-21 07:25:12