Exposures › CVE-2020-13927
CVE-2020-13927
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-01-18
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
The previous default setting for Airflow's Experimental API was to allow all API requests without authentication.
Players implicated
Description
The previous default setting for Airflow's Experimental API was to allow all API requests without authentication.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.