Flower is a web-based tool for real-time monitoring and management of the Celery distributed task queue.A denial-of-service vulnerability exists in Flower version 2 May 2022 and earlier, which stems from vulnerability to OAuth authentication bypass. An attacker could exploit this vulnerability to deny service by shutting down the Celery task node.