Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:46 a.m.8 views

CVE-2019-12417

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. This also presented a Local File Disclosure vulnerability to any file readable by the webserver process...

4.8CVSS7.3AI score0.01345EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2019/11/22 1:45 p.m.5 views

datamorph-workflow-generator (=0.0.2), i2b2-import (>=0.0.1 <=1.5.34) +1 more potentially affected by CVE-2019-12417 via airflow (=0.6.0)

airflow PYPI version =0.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on airflow and may be impacted: - datamorph-workflow-generator =0.0.2 - i2b2-import =0.0.1, =1.5.34 - pandasdb =0.0.10 Source cves: CVE-2019-12417 Source advisory:...

4.8CVSS5.8AI score0.01345EPSS
Exploits0
OSV
OSV
added 2019/10/30 10:15 p.m.5 views

CVE-2019-12417

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. This also presented a Local File Disclosure vulnerability to any file readable by the webserver process...

4.8CVSS5.4AI score0.01345EPSS
Exploits0References1
NVD
NVD
added 2019/10/30 10:15 p.m.27 views

CVE-2019-12417

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. This also presented a Local File Disclosure vulnerability to any file readable by the webserver process...

4.8CVSS5.5AI score0.01345EPSS
Exploits0References1
CVE
CVE
added 2019/10/30 9:4 p.m.95 views

CVE-2019-12417

CVE-2019-12417 affects Apache Airflow. A malicious admin user could edit the state of objects in the Airflow metadata database, triggering arbitrary JavaScript execution on affected page views (cross-site scripting). The same action also enables a Local File Disclosure to access files readable by...

4.8CVSS5.5AI score0.01345EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder