Security Advisory

CVE-2020-13944

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-17 14:01:40
Last updated 2024-08-04 12:32:14
Assigner apache
State PUBLISHED

Description

In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like /trigger was vulnerable to XSS exploit.

← Browse all CVEs View on cve.org ↗