CVE-2020-11978 - Apache Airflow Command Injection
Project:Apache
Product:Airflow
Date Added:2022-01-18Due Date:2022-07-18
Vulnerability Name
Apache Airflow Command Injection
Description
A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-11978