CVE-2022-45402

on github

Published

November 15, 2022

Severity

CVSS v3:

6.1 MEDIUM

CVSS v2:

N/A

Description

In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's `/login` endpoint.

References

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:apache:airflow::::::::	n/a	2.4.3	*

External Links

NVD - CVE-2022-45402