Safety vulnerability ID: 73187
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Affected versions of Apache Airflowcontain a critical vulnerability in the example DAG file "example_inlet_event_extra.py". This flaw allows authenticated attackers with only DAG trigger permission to execute arbitrary commands on the Airflow worker. Users who have based their DAGs on this example may be at risk. It is strongly recommended to avoid exposing example DAGs in production environments. Additionally, review all DAGs derived from this example for similar security issues.
Latest version: 2.10.4
Programmatically author, schedule and monitor data pipelines
This vulnerability has no description
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application