CVE-2019-0216

Published: Apr 10, 2019

Modified: Aug 4, 2024

PUBLISHED

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views.

Vendor	Product	Versions
n/a	Apache Airflow	affected `Apache Airflow <= 1.10.2`

x_refsource_MISC

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.