0.001 Low
EPSS
Percentile
27.3%
airflow is vulnerable to remote code execution (RCE). The package uses the pickle Python module unsafely, allowing remote attackers to execute code through a serialized object.
github.com/apache/incubator-airflow/pull/2132
issues.apache.org/jira/browse/AIRFLOW-855