CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2021-38540

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0190%
EPSS Percentile10.56th
Published2021年9月9日
Last Modified2024年11月21日

Vulnerability Description

The variable import endpoint was not protected by authentication in Airflow >=2.0.0, <2.1.3. This allowed unauthenticated users to hit that endpoint to add/modify Airflow variables used in DAGs, potentially resulting in a denial of service, information disclosure or remote code execution. This issue affects Apache Airflow >=2.0.0, <2.1.3.

Affected Platforms (CPE)

📦
Apache

Airflow

>= 2.0.0 and < 2.1.3

References & Advisories

🔗 https://lists.apache.org/thread.html/rac2ed9118f64733e47b4f1e82ddc8c8020774698f13328ca742b03a2%40%3Cannounce.apache.org%3E
🔗 https://lists.apache.org/thread.html/rb34c3dd1a815456355217eef34060789f771b6f77c3a3dec77de2064%40%3Cusers.airflow.apache.org%3E
🔗 https://lists.apache.org/thread.html/rac2ed9118f64733e47b4f1e82ddc8c8020774698f13328ca742b03a2%40%3Cannounce.apache.org%3E
🔗 https://lists.apache.org/thread.html/rb34c3dd1a815456355217eef34060789f771b6f77c3a3dec77de2064%40%3Cusers.airflow.apache.org%3E

相關漏洞威脅

CVE-2020-119829.8

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attack can connect to the broker...

CVE-2020-139279.8

The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses s...

CVE-2020-119819.8

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the brok...

CVE-2017-178369.8

In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authenticated cookies, as well as passwords to data...