CVE-2020-11978: Apache Airflow Command Injection. A remote code/command
Apache Airflow Command Injection. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow.
- CISA KEV-listed (remediation due 2022-07-18)
- EPSS 94.3% (99.9% percentile)