Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
October 5, 2022Rewterz Threat Advisory – ICS: Johnson Controls Metasys ADX Server Vulnerability
October 5, 2022Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
October 5, 2022Rewterz Threat Advisory – ICS: Johnson Controls Metasys ADX Server Vulnerability
October 5, 2022Severity
High
Analysis Summary
CVE-2022-41672
Apache Airflow could allow a remote authenticated attacker to bypass security restrictions, caused by improper session expiration after deactivating a user. By sending a specially-crafted request, an attacker could exploit this vulnerability to continue to use the UI or API.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2022-41672
Affected Vendors
Apache
Affected Products
Apache Airflow 2.4.0
Remediation
Upgrade to the latest version of Apache Airflow, available from the Apache Airflow GIT Repository.