CVE-2023-29247

CVE-2023-29247: Stored XSS on Apache Airflow

Vendor Apache Software Foundation
Product Apache Airflow
Weakness CWE-79 · XSS
Published May 8, 2023
Last update October 15, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0.

Key dates

Disclosure timeline

May 8, 2023 CVE published
October 15, 2024 Record updated