CVE-2023-22884
on github
Published
Severity
CVSS v3:
9.8 CRITICAL
CVSS v2:
N/A
Description
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:apache:airflow:*:*:*:*:*:*:*:* | n/a | 2.5.1 | * |
cpe:2.3:a:apache:airflow_mysql_provider:*:*:*:*:*:*:*:* | n/a | 4.0.0 | * |
cpe:2.3:a:apache:apache-airflow-providers-mysql:*:*:*:*:*:*:*:* | n/a | 4.0.0 | * |