CVE-2022-40954

CWE-78OS Command Injection4 documents4 sources
Severity
5.5MEDIUM
EPSS
1.1%
top 21.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Apache Software Foundation Apache AirflowApache Software Foundation Apache Airflow Spark ProviderApache Airflow+1 more
Timeline
PublishedNov 22

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Spark Provider, Apache Airflow allows an attacker to read arbtrary files in the task execution context, without write access to DAG files. This issue affects Spark Provider versions prior to 4.0.0. It also impacts any Apache Airflow versions prior to 2.3.0 in case Spark Provider is installed (Spark Provider 4.0.0 can only be installed for Airflow 2.3.0+). Note that you need

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDapache/airflow< 2.3.0
PyPIapache-airflow< 2.3.0
CVEListV5apache_software_foundation/apache_airflowunspecified2.3.0

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
OS Command Injection in Apache Airflow2022-11-22
OSV
OS Command Injection in Apache Airflow2022-11-22
CVEList
Apache Airflow Spark Provider RCE that bypass restrictions to read arbitrary files2022-11-22
CVE-2022-40954 (MEDIUM CVSS 5.5) | Improper Neutralization of Special | cvebase.io