CVE-2024-32077
5.4MEDIUMApache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which f
Veröffentlicht: 5/14/2024Aktualisiert: 3/27/2025
Beschreibung
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue.
KI-AnalyseKI-gestützt
Betroffene Produkte
apacheairflow
2.9.0
apacheairflow
2.9.0
apacheairflow
2.9.0
apacheairflow
2.9.0
apacheairflow
2.9.0
apacheairflow
2.9.0
Referenzen
- http://www.openwall.com/lists/oss-security/2024/05/14/1Mailing ListThird Party Advisory
- https://github.com/apache/airflow/pull/38882Issue TrackingPatch
- https://lists.apache.org/thread/gsjmnrqb3m5fzp0vgpty1jxcywo91v77Mailing ListVendor Advisory
- http://www.openwall.com/lists/oss-security/2024/05/14/1Mailing ListThird Party Advisory
- https://github.com/apache/airflow/pull/38882Issue TrackingPatch
- https://lists.apache.org/thread/gsjmnrqb3m5fzp0vgpty1jxcywo91v77Mailing ListVendor Advisory