8 matches found
CVE-2023-29247
Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0...
CVE-2023-29247
creationtimestamp| type| source ---|---|--- 2023-05-08 14:47:35+00:00| seen| https://t.me/cibsecurity/63413...
abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +135 more potentially affected by CVE-2023-29247 via apache-airflow (>=1.8.2 <=2.5.3)
apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-29247 Source advisory: OSV:GHSA-VCF6-3WV2-5VCR...
CVE-2023-29247
Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0...
abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +135 more potentially affected by CVE-2023-29247 via apache-airflow (>=1.8.2 <=2.5.3)
apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-29247 Source advisory: OSV:PYSEC-2023-60...
CVE-2023-29247
CVE-2023-29247 corresponds to a stored XSS in Apache Airflow’s Task instance details page, affecting versions prior to 2.6.0. Several connected sources (NVD, OSV entries, CNVD, GHSA, CNVD) converge on: vulnerable component is the UI rendering of task instance details; root cause is improper handl...
CVE-2023-29247 Stored XSS on Apache Airflow
Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0...
CVE-2023-29247 Stored XSS on Apache Airflow
Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0...