Vulnerabilities > Apache > Apache Airflow Providers Mysql > 3.2.1

DATE CVE VULNERABILITY TITLE RISK
2023-01-21 CVE-2023-22884 Command Injection vulnerability in Apache Airflow
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundation Apache Airflow MySQL Provider.This issue affects Apache Airflow: before 2.5.1; Apache Airflow MySQL Provider: before 4.0.0.
network
low complexity
apache CWE-77
critical
 9.8
9.8