Internet Bug Bounty: RCE vulnerability in apache-airflow-providers-apache-sqoop 3.1.0

A remote code execution vulnerability was found in the Apache Airflow Sqoop Provider before version 3.1.1, due to improper input validation in the libjars parameter, allowing attackers to execute arbitrary system commands on the machine performing the MR task...

Remote Code Execution (RCE)

apacheairflowprovidersapachesqoop is vulnerable to Remote Code Execution RCE. The vulnerability is caused by improper sanitization in sqoop.py due to the libjars parameter which allows an attacker to upload and execute malicious code on the system...