Back to search
CVE-2022-46651
Published: Jul 12, 2023
Modified: Oct 4, 2024
PUBLISHED
Description
Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unauthorized actor to gain access to sensitive information in Connection edit view. This vulnerability is considered low since it requires someone with access to Connection resources specifically updating the connection to exploit it. Users should upgrade to version 2.6.3 or later which has removed the vulnerability.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache Airflow | affected 0 - < 2.6.3 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now