Lucene search

K

GoogleOSV:PYSEC-2019-214

HistoryApr 10, 2019 - 8:29 p.m.

PYSEC-2019-214

2019-04-1020:29:00

Google

osv.dev

6

EPSS

0.001

Percentile

44.8%

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views.

References

www.openwall.com/lists/oss-security/2019/04/10/6

www.securityfocus.com/bid/107869

github.com/advisories/GHSA-8p7v-2jvj-v54r

lists.apache.org/thread.html/2de387213d45bc626d27554a1bde7b8c67d08720901f82a50b6f4231@%3Cdev.airflow.apache.org%3E

EPSS

0.001

Percentile

44.8%

Related for OSV:PYSEC-2019-214

osv1 github1 cvelist1 nvd1 prion1 cve1