Цены Enterprise

CVE-2022-40604

7.5HIGH

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

Опубликовано: 9/21/2022Обновлено: 5/27/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

ИИ-АнализНа базе ИИ

Затронутые продукты

apacheairflow

Ссылки

https://github.com/apache/airflow/pull/26337
PatchThird Party Advisory
https://lists.apache.org/thread/z20x8m16fnhxdkoollv53w1ybsts687t
Vendor Advisory
https://github.com/apache/airflow/pull/26337
PatchThird Party Advisory
https://lists.apache.org/thread/z20x8m16fnhxdkoollv53w1ybsts687t
Vendor Advisory