CVE-2022-43982

Published: Nov 2, 2022
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-43982" target="_blank" rel="noopener"> CVE-2022-43982
GHSA: <a href="https://github.com/advisories/GHSA-h63r-9xxf-f2c7" target="_blank" rel="noopener"> GHSA-h63r-9xxf-f2c7
Severity: Medium
Exploit:

In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the origin query argument.