CVE-2020-11978

Apache Airflow Command Injection

A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow. Vendor/Product: Apache Airflow. Added to CISA KEV 2022-01-18; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2020-11978