CVE-2023-22888

Published: Jul 12, 2023
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-22888" target="_blank" rel="noopener"> CVE-2023-22888
GHSA: <a href="https://github.com/advisories/GHSA-5946-8p38-vffp" target="_blank" rel="noopener"> GHSA-5946-8p38-vffp
Severity: Medium
Exploit:

Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to cause a service disruption by manipulating the run_id parameter. This vulnerability is considered low since it requires an authenticated user to exploit it. It is recommended to upgrade to a version that is not affected