CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0216

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.2%

CVSS Severity

CVSS v3 Score 4.8

CVSS v2 Score 3.5

References

Products affected by CVE-2019-0216

Apache » Airflow » Version: N/A

cpe:2.3:a:apache:airflow:-
Apache » Airflow » Version: 0.1

cpe:2.3:a:apache:airflow:0.1
Apache » Airflow » Version: 0.2

cpe:2.3:a:apache:airflow:0.2
Apache » Airflow » Version: 0.2.1

cpe:2.3:a:apache:airflow:0.2.1
Apache » Airflow » Version: 0.2.2

cpe:2.3:a:apache:airflow:0.2.2
Apache » Airflow » Version: 0.2.3

cpe:2.3:a:apache:airflow:0.2.3
Apache » Airflow » Version: 0.3

cpe:2.3:a:apache:airflow:0.3
Apache » Airflow » Version: 0.3.1

cpe:2.3:a:apache:airflow:0.3.1
Apache » Airflow » Version: 0.3.2

cpe:2.3:a:apache:airflow:0.3.2
Apache » Airflow » Version: 0.4

cpe:2.3:a:apache:airflow:0.4
Apache » Airflow » Version: 0.4.1

cpe:2.3:a:apache:airflow:0.4.1
Apache » Airflow » Version: 0.4.2

cpe:2.3:a:apache:airflow:0.4.2
Apache » Airflow » Version: 0.4.3

cpe:2.3:a:apache:airflow:0.4.3
Apache » Airflow » Version: 0.4.5

cpe:2.3:a:apache:airflow:0.4.5
Apache » Airflow » Version: 0.4.6

cpe:2.3:a:apache:airflow:0.4.6
Apache » Airflow » Version: 0.5.0

cpe:2.3:a:apache:airflow:0.5.0
Apache » Airflow » Version: 1.0.0

cpe:2.3:a:apache:airflow:1.0.0
Apache » Airflow » Version: 1.0.1

cpe:2.3:a:apache:airflow:1.0.1
Apache » Airflow » Version: 1.1.0

cpe:2.3:a:apache:airflow:1.1.0
Apache » Airflow » Version: 1.1.1

cpe:2.3:a:apache:airflow:1.1.1
Apache » Airflow » Version: 1.10.0

cpe:2.3:a:apache:airflow:1.10.0
Apache » Airflow » Version: 1.10.1

cpe:2.3:a:apache:airflow:1.10.1
Apache » Airflow » Version: 1.10.2

cpe:2.3:a:apache:airflow:1.10.2
Apache » Airflow » Version: 1.2.0

cpe:2.3:a:apache:airflow:1.2.0
Apache » Airflow » Version: 1.3.0

cpe:2.3:a:apache:airflow:1.3.0
Apache » Airflow » Version: 1.4.0

cpe:2.3:a:apache:airflow:1.4.0
Apache » Airflow » Version: 1.4.1

cpe:2.3:a:apache:airflow:1.4.1
Apache » Airflow » Version: 1.5.0

cpe:2.3:a:apache:airflow:1.5.0
Apache » Airflow » Version: 1.5.1

cpe:2.3:a:apache:airflow:1.5.1
Apache » Airflow » Version: 1.5.2

cpe:2.3:a:apache:airflow:1.5.2
Apache » Airflow » Version: 1.6.0

cpe:2.3:a:apache:airflow:1.6.0
Apache » Airflow » Version: 1.6.1

cpe:2.3:a:apache:airflow:1.6.1
Apache » Airflow » Version: 1.6.2

cpe:2.3:a:apache:airflow:1.6.2
Apache » Airflow » Version: 1.7.0

cpe:2.3:a:apache:airflow:1.7.0
Apache » Airflow » Version: 1.7.1

cpe:2.3:a:apache:airflow:1.7.1
Apache » Airflow » Version: 1.7.1.1

cpe:2.3:a:apache:airflow:1.7.1.1
Apache » Airflow » Version: 1.7.1.2

cpe:2.3:a:apache:airflow:1.7.1.2
Apache » Airflow » Version: 1.7.1.3

cpe:2.3:a:apache:airflow:1.7.1.3
Apache » Airflow » Version: 1.8.0

cpe:2.3:a:apache:airflow:1.8.0
Apache » Airflow » Version: 1.8.1

cpe:2.3:a:apache:airflow:1.8.1
Apache » Airflow » Version: 1.8.2

cpe:2.3:a:apache:airflow:1.8.2
Apache » Airflow » Version: 1.9.0

cpe:2.3:a:apache:airflow:1.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0216

Products

Pricing

Contact Us