Apache Airflow is an open source platform for creating, managing, and monitoring workflows from the Apache Foundation. The platform features scalable and dynamic monitoring. Apache Airflow suffers from an operating system command injection vulnerability that stems from an improper neutralization of a particular element of an operating system command, which can be exploited by an attacker to execute commands in the context of a task execution without write access to the DAG file.
CPE | Name | Operator | Version |
---|---|---|---|
apache apache airflow | lt | 4.0.0 |