H3-2022-0065
Unauthenticated Access to Apache Airflow
Category | SECURITY_MISCONFIGURATION |
Base Score | 9.1 |
Description
The Apache Airflow application has been deployed without authentication enabled.
Impact
Attackers may act as an authorized user to view and alter sensitive information within the Airflow application.