Apache-airflow-providers-fab Security Vulnerabilities and Issues — Apache-airflow-providers-fab CVE List

Lucene search

ApacheApache-airflow-providers-fab

2 matches found

CVE•added 2025/01/08 9:15 a.m.•256 views

CVE-2024-45033

Insufficient Session Expiration vulnerability in Apache Airflow Fab Provider. This issue affects Apache Airflow Fab Provider: before 1.5.2. When user password has been changed with admin CLI, the sessions for that user have not been cleared, leading to insufficient session expiration, thus logged u...

8.1CVSS6.4AI score0.00256EPSS

CVE•added 2024/08/05 8:15 a.m.•201 views

CVE-2024-42447

Insufficient Session Expiration vulnerability in Apache Airflow Providers FAB. This issue affects Apache Airflow Providers FAB: 1.2.1 (when used with Apache Airflow 2.9.3) and FAB 1.2.0 for all Airflow versions. The FAB provider prevented the user from logging out. FAB provider 1.2.1 only affected ...

9.8CVSS6.5AI score0.00935EPSS