漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache Airflow: Cache Control - Storage of Sensitive Data in Browser Cache
Vulnerability Description
Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow. Airflow did not return "Cache-Control" header for dynamic content, which in case of some browsers could result in potentially storing sensitive data in local cache of the browser. This issue affects Apache Airflow: before 2.9.2. Users are recommended to upgrade to version 2.9.2, which fixes the issue.
CVSS Information
N/A
Vulnerability Type
通过浏览器缓存导致的信息暴露
Vulnerability Title
Apache Airflow 安全漏洞
Vulnerability Description
Apache Airflow是美国阿帕奇(Apache)基金会的一套用于创建、管理和监控工作流程的开源平台。该平台具有可扩展和动态监控等特点。 Apache Airflow 2.9.2 之前版本存在安全漏洞,该漏洞源于Airflow 未返回动态内容的 Cache-Control 标头,在某些情况下,这可能会导致敏感数据存储在浏览器的本地缓存中。
CVSS Information
N/A
Vulnerability Type
N/A