CVE-2023-22884
Apache Airflow, Apache Airflow MySQL Provider: Arbitrary file read via MySQL provider in Apache Airflow
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0.
Neutralización inadecuada de elementos especiales utilizados en una vulnerabilidad de comando ("Inyección de comando") en Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider. Este problema afecta a Apache Airflow: antes de 2.5.1; Apache Airflow MySQL Provider: anterior a 4.0.0.
*Credits:
Son Tran from VNPT - VCI
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-01-09 CVE Reserved
- 2023-01-21 CVE Published
- 2023-09-07 First Exploit
- 2024-08-02 CVE Updated
- 2024-08-13 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')
CAPEC
References (3)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/jakabakos/CVE-2023-22884-Airflow-SQLi | 2023-09-07 |
| URL | Date | SRC |
|---|---|---|
| https://github.com/apache/airflow/pull/28811 | 2023-11-07 |
| URL | Date | SRC |
|---|---|---|
| https://lists.apache.org/thread/0l0j3nt0t7fzrcjl2ch0jgj6c58kxs5h | 2023-11-07 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apache Search vendor "Apache" | Airflow Search vendor "Apache" for product "Airflow" | < 2.5.1 Search vendor "Apache" for product "Airflow" and version " < 2.5.1" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Apache-airflow-providers-mysql Search vendor "Apache" for product "Apache-airflow-providers-mysql" | < 4.0.0 Search vendor "Apache" for product "Apache-airflow-providers-mysql" and version " < 4.0.0" | - |
Affected
| ||||||