In Apache Airflow, prior to version 2.4.1, deactivating a user wouldn't prevent an already authenticated user from being able to continue using the UI or API.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Apache Software Foundation

Apache Airflow

Affected Versions:

unspecified

References

https://github.com/apache/airflow/pull/26635

https://lists.apache.org/thread/ohf3pvd3dftb8zb01yngbn1jtkq5m08y

Published: 2022-10-07T00:00:00

Last Modified: 2024-08-03T12:49:43.427Z

Copied to clipboard!