Description
An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the broker (Redis, RabbitMQ) directly, it is possible to inject commands, resulting in the celery worker running arbitrary commands.
Affected products
- Apache Software Foundation / Apache Airflow1.10.10 and below – 1.10.10 and below
Exploits & PoCs
- nucleiApache Airflow <=1.10.10 - Command Injectionby pussycat0x