Security Advisory

CVE-2022-38054

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-02 07:10:21
Last updated 2024-08-03 10:45:51
Assigner apache
State PUBLISHED

Description

In Apache Airflow versions 2.2.4 through 2.3.3, the `database` webserver session backend was susceptible to session fixation.