Apache Airflow up to 2.1.1 CeleryExecutor/LocalExecutor information disclosure

A vulnerability was found in Apache Airflow up to 2.1.1. It has been declared as problematic. This vulnerability affects an unknown code of the component CeleryExecutor/LocalExecutor. Upgrading to version 2.1.2 eliminates this vulnerability.

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2024-20381 : CISCO IOS XR JSON-RPC API IMPROPER AUTHORIZATION

CVE-2024-20381 : CISCO IOS XR JSON-RPC API IMPROPER AUTHORIZATION

Description A vulnerability in the JSON-RPC API feature in ConfD that is used by the web-based management interfaces of Cisco

CVE-2024-44466 : COMFAST CF-XR11 2.7.2 HTTP POST REQUEST /USR/BIN/WEBMGNT SUB_424CB4 IFACE COMMAND INJECTION

CVE-2024-44466 : COMFAST CF-XR11 2.7.2 HTTP POST REQUEST /USR/BIN/WEBMGNT SUB_424CB4 IFACE COMMAND INJECTION

Description COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt

CVE-2024-45013 : LINUX KERNEL UP TO 6.10.6 NVME_UNINIT_CTRL USE AFTER FREE

CVE-2024-45013 : LINUX KERNEL UP TO 6.10.6 NVME_UNINIT_CTRL USE AFTER FREE

Description In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd (“nvme: