CVE-2022-40604

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-40604

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-40604.json

Aliases

Published

2022-09-21T08:15:08Z

Modified

2023-12-06T01:02:34.763072Z

Details

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

References

Affected packages

Git / github.com/apache/airflow

Affected ranges

Type: GIT
Repo: https://github.com/apache/airflow
Events: Introduced

75c60923e01375ffc5f71c4f2f7968f489e2ca2f

Last affected

24884e984747fc1706d543de526f30a1fe0f28fe