描述
In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.
AI分析AI驱动
受影响产品
apacheairflow
参考资料
- https://github.com/apache/airflow/pull/26337PatchThird Party Advisory
- https://lists.apache.org/thread/z20x8m16fnhxdkoollv53w1ybsts687tVendor Advisory
- https://github.com/apache/airflow/pull/26337PatchThird Party Advisory
- https://lists.apache.org/thread/z20x8m16fnhxdkoollv53w1ybsts687tVendor Advisory