CVE-2020-11982
Insecure default config of Celery worker in Apache Airflow
9.8
CRITICAL
CVSS 3.1
EPSS 5.7%
Description
An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attack can connect to the broker (Redis, RabbitMQ) directly, it was possible to insert a malicious payload directly to the broker which could lead to a deserialization attack (and thus remote code execution) on the Worker.
How to fix CVE-2020-11982
To remediate CVE-2020-11982, upgrade the affected package to a fixed version below.
- —upgrade to 1.10.11 or later
- —upgrade to 1.10.11 or later
- —upgrade to 1.10.11rc1 or later
Is CVE-2020-11982 being exploited?
Moderate — EPSS is 5.7%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (3)
- from 0, < 1.10.11
- from 0, < 1.10.11
- from 0, < 1.10.11rc1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |