Lucene search
China National Vulnerability DatabaseCNVD-2022-66498HistoryJun 09, 2022 - 12:00 a.m.
Flower Denial of Service Vulnerability
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
flower
web-based
denial-of-service
vulnerability
real-time monitoring
celery
distributed task queue
oauth authentication bypass
exploit
shut down task node
cnvd
EPSS
0.002
Percentile
54.1%
Flower is a web-based tool for real-time monitoring and management of the Celery distributed task queue.A denial-of-service vulnerability exists in Flower version 2 May 2022 and earlier, which stems from vulnerability to OAuth authentication bypass. An attacker could exploit this vulnerability to deny service by shutting down the Celery task node.
Related
ubuntucve
ubuntucve
CVE-2022-30034
2022-06-02 00:00:00
osv
osv
PYSEC-2022-42973
2022-06-02 14:15:00
Flower OAuth authentication bypass
2022-06-03 00:01:07
CVE-2022-30034
2022-06-02 14:15:51
cve
cve
CVE-2022-30034
2022-06-02 14:15:51
prion
prion
Authentication flaw
2022-06-02 14:15:00
nvd
nvd
CVE-2022-30034
2022-06-02 14:15:51
veracode
veracode
Authentication Bypass
2022-06-06 12:54:44
cvelist
cvelist
CVE-2022-30034
2022-05-31 13:13:32
github
github
Flower OAuth authentication bypass
2022-06-03 00:01:07