CVE-2020-11982

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-11982

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11982.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-11982

Aliases

Published

2020-07-17T00:15:10.477Z

Modified

2026-04-11T22:57:33.895446Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attack can connect to the broker (Redis, RabbitMQ) directly, it was possible to insert a malicious payload directly to the broker which could lead to a deserialization attack (and thus remote code execution) on the Worker.

References

https://lists.apache.org/thread.html/r7255cf0be3566f23a768e2a04b40fb09e52fcd1872695428ba9afe91%40%3Cusers.airflow.apache.org%3E

Affected packages

Git / github.com/apache/airflow

Affected ranges

Type

GIT

Repo

https://github.com/apache/airflow

Events

Introduced

Last affected

1c2d5de877a993a6541e017d4d59938315814448

Database specific

{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.10.10"
        }
    ],
    "cpe": "cpe:2.3:a:apache:airflow:*:*:*:*:*:*:*:*",
    "source": "CPE_FIELD"
}

Affected versions

constraints-1.*

constraints-1.10.1

constraints-1.10.10

constraints-1.10.2

constraints-1.10.3

constraints-1.10.4

constraints-1.10.5

constraints-1.10.6

constraints-1.10.7

constraints-1.10.8

constraints-1.10.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11982.json"