← back
CVE-2018-20244

CVE-2018-20244

EPSS 2.0%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Feb 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →