Lucene search
9701ED09-B3DD-5E5B-A2B5-CFB714A7E23BHistoryJul 21, 2023 - 12:55 p.m.
Exploit for Code Injection in Apache Airflow
2023-07-2112:55:16
115
apache airflow
vulnerability
example dags
ui access
arbitrary commands
manual run_id
cve-2022-40127
jakabakos
repo
docker-compose
installation
exploit
reverse shell
attacker ip
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.371 Low
EPSS
Percentile
97.2%
Apache Airflow < 2.4.0 RCE (CVE-2022-40127)
**PoC for CVE-202…
This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.
Related
githubexploit
githubexploit
Exploit for Code Injection in Apache Airflow
2023-07-21 12:55:16
nuclei
nuclei
AirFlow < 2.4.0 - Remote Code Execution
2022-11-23 12:41:34
hackerone
hackerone
cve
cve
CVE-2022-40127
2022-11-14 10:15:10
veracode
veracode
Arbitrary Code Execution
2022-11-15 06:46:03
github
github
Apache Airflow vulnerable to OS Command Injection via example DAGs
2022-11-14 12:00:15
cnvd
cnvd
Apache Airflow code injection vulnerability
2022-11-17 00:00:00
osv
osv
PYSEC-2022-42982
2022-11-14 10:15:00
BIT-airflow-2022-40127
2024-03-06 10:57:35
Apache Airflow vulnerable to OS Command Injection via example DAGs
2022-11-14 12:00:15
prion
prion
Design/Logic Flaw
2022-11-14 10:15:00
nvd
nvd
CVE-2022-40127
2022-11-14 10:15:10
cvelist
cvelist
CVE-2022-40127 Apache Airflow <2.4.0 has an RCE in a bash example
2022-11-14 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.371 Low
EPSS
Percentile
97.2%
Related for 9701ED09-B3DD-5E5B-A2B5-CFB714A7E23B