THREAT OPS › CVEs › CVE-2020-13927
CVE-2020-13927 — Apache Airflow's Experimental API Authentication Bypass
The previous default setting for Airflow's Experimental API was to allow all API requests without authentication.
Vulnerability details
- Affected productsAirflow's Experimental API
- KEV remediation due2022-07-18