Severity: low Affected versions:
- Apache Airflow before 2.6.3 Description: Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user can use crafted input to make the current request hang. It is recommended to upgrade to a version that is not affected Credit: National Cyber Security VietNam (NCS VietNam) (finder) hungtd (finder) References: https://github.com/apache/airflow/pull/32060 https://airflow.apache.org/ https://www.cve.org/CVERecord?id=CVE-2023-36543 --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@airflow.apache.org For additional commands, e-mail: users-h...@airflow.apache.org
