Lucene search

CVE-2024-39877 Apache Airflow: DAG Author Code Execution possibility in airflow-scheduler

🗓️ 17 Jul 2024 07:24:54Reported by apacheType

Apache Airflow: Authenticated DAG Author Code Execution CVE-2024-3987

Reporter	Title	Published	Views	Family All 13
OSV	GHSA-G5HV-R743-V8PM Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler	17 Jul 202409:30	–	osv
OSV	BIT-AIRFLOW-2024-39877	19 Jul 202407:16	–	osv
OSV	CVE-2024-39877	17 Jul 202408:15	–	osv
OSV	PYSEC-2024-190	17 Jul 202408:15	–	osv
OSV	CGA-H5GV-QMMR-9R2W	18 Jul 202418:19	–	osv
Veracode	Arbitrary Code Execution	18 Jul 202405:16	–	veracode
NVD	CVE-2024-39877	17 Jul 202408:15	–	nvd
CVE	CVE-2024-39877	17 Jul 202408:15	–	cve
CNVD	Apache Airflow code execution vulnerability (CNVD-2024-33592)	17 Jul 202400:00	–	cnvd
Wolfi	CVE-2024-39877 vulnerabilities	17 Jul 202408:15	–	wolfi

[
  {
    "collectionURL": "https://pypi.python.org",
    "defaultStatus": "unaffected",
    "packageName": "apache-airflow",
    "product": "Apache Airflow",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThan": "2.9.3",
        "status": "affected",
        "version": "2.4.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread/1xhj9dkp37d6pzn24ll2mf94wbqnb2y1
github	www.github.com/apache/airflow/pull/40522

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Jul 2024 07:54Current

EPSS0.00132

CWE-94