PT-2021-22197 · Apache · Apache Airflow

Nathan Jones

Published

2021-09-09

Updated

2024-03-06

CVE-2021-38540

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Apache Airflow versions 2.0.0 through 2.1.2

Description The issue concerns the variable import endpoint not being protected by authentication. This allows unauthenticated users to access the endpoint, potentially leading to denial of service, information disclosure, or remote code execution by adding or modifying Airflow variables used in DAGs.

Recommendations For Apache Airflow versions 2.0.0 through 2.1.2, update to version 2.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the variable import endpoint until a patch is available.

Exploit

Fix

DoS

RCE

Missing Authentication

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306CWE-269

Related Identifiers

BIT-AIRFLOW-2021-38540

CVE-2021-38540

GHSA-H88F-R7CW-8FV3

PYSEC-2021-326

Affected Products

Apache Airflow

PT-2021-22197 · Apache · Apache Airflow

CVE-2021-38540

Weakness Enumeration

Related Identifiers

Affected Products

References · 14