apache-airflow-providers-amazon@9.14.0
Provider package apache-airflow-providers-amazon for Apache Airflow
latest version
9.27.0
latest non vulnerable version
first published
5 years ago
latest version published
3 days ago
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the apache-airflow-providers-amazon package. This does not include vulnerabilities belonging to this package’s dependencies.
Fix vulnerabilities automatically
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
apache-airflow-providers-amazon is a Provider for Apache Airflow. Implements apache-airflow-providers-amazon package Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere due to improper handling of the session token cookie path. An attacker can gain unauthorized access to user sessions by capturing valid session tokens through co-hosted applications operating under the same domain. How to fix Exposure of Resource to Wrong Sphere? Upgrade | [,9.23.0rc1) |
apache-airflow-providers-amazon is a Provider for Apache Airflow. Implements apache-airflow-providers-amazon package Affected versions of this package are vulnerable to Origin Validation Error in the SAML authentication process due to improper verification of the origin provided by the client. An attacker can gain unauthorized access to different instances by reusing a SAML response from another instance. How to fix Origin Validation Error? Upgrade | [8.0.0,9.22.0rc1) |