CVE-2019-0229

Summary

A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have adequate protection and were vulnerable to cross-site request forgery attacks.

Affected Software

VendorProductVersion RangeStatus
n/aApache AirflowApache Airflow <= 1.10.2affected

Weaknesses

  • CSRF

ADP Enrichment

CVE Program Container

Additional References

References