H3-2022-0068
Airflow Configuration Exposure
Category | SECURITY_MISCONFIGURATION |
Base Score | 6.5 |
Description
The Apache Airflow application exposes its config file to the public.
Impact
Attackers can steal secrets and version information from this file, allowing for targeted attacks with higher privledges than may otherwise be possible.