CVE-2022-40604

on github

Published

September 21, 2022

Severity

CVSS v3:

7.5 HIGH

CVSS v2:

N/A

Description

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

References

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:apache:airflow::::::::	2.3.0 (including)	2.3.4 (including)	*

External Links

NVD - CVE-2022-40604