VYPR

Go modules package

github.com/flyteorg/flyteadmin

pkg:golang/github.com/flyteorg/flyteadmin

Vulnerabilities (3)

  • CVE-2023-41891Oct 30, 2023
    affected < 1.1.124fixed 1.1.124

    FlyteAdmin is the control plane for Flyte responsible for managing entities and administering workflow executions. Prior to version 1.1.124, list endpoints on FlyteAdmin have a SQL vulnerability where a malicious user can send a REST request with custom SQL statements as list fil

  • CVE-2022-39273Oct 6, 2022
    affected < 1.1.44fixed 1.1.44

    FlyteAdmin is the control plane for the data processing platform Flyte. Users who enable the default Flyte’s authorization server without changing the default clientid hashes will be exposed to the public internet. In an effort to make enabling authentication easier for Flyte adm

  • CVE-2022-31145Jul 13, 2022
    affected < 1.1.31fixed 1.1.31

    FlyteAdmin is the control plane for Flyte responsible for managing entities and administering workflow executions. In versions 1.1.30 and prior, authenticated users using an external identity provider can continue to use Access Tokens and ID Tokens even after they expire. Users w