AWS Patches Critical ‘FlowFixation’ Bug in Airflow Service to Prevent Session Hijacking

March 22, 2024 at 10:03AM Cybersecurity researchers detailed a security vulnerability in AWS Managed Workflows for Apache Airflow that’s now fixed by AWS, named FlowFixation by Tenable. It could allow a threat actor to hijack sessions, achieve code execution, and perform same-site attacks, impacting AWS, Azure, and Google Cloud. Both AWS and Azure have addressed … Read more