CVE-2022-43982

Published November 2nd, 2022

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the `origin` query argument.

Apache Airflow - A platform to programmatically author, schedule, and monitor workflows

GitHub

45.8K