CVE-2020-9485
published 2020-07-17CVE-2020-9485: An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the "classic" UI.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the "classic" UI.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | airflow | <= 1.10.10 | — |
| apache_software_foundation | apache_airflow | — | — |