Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
dag-factory's CI/CD Workflow Allows for Repository Takeover and Secret Exfiltration
Vulnerability Description
dag-factory is a library for Apache Airflow® to construct DAGs declaratively via configuration files. In versions 0.23.0a8 and below, a high-severity vulnerability has been identified in the cicd.yml workflow within the astronomer/dag-factory GitHub repository. The workflow, specifically when triggered by pull_request_target, is susceptible to exploitation, allowing an attacker to execute arbitrary code within the GitHub Actions runner environment. This misconfiguration enables an attacker to establish a reverse shell, exfiltrate sensitive secrets, including the highly-privileged GITHUB_TOKEN, and ultimately gain full control over the repository. This is fixed in version 0.23.0a9.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
dag-factory 操作系统命令注入漏洞
Vulnerability Description
dag-factory是Astronomer开源的一个通过构建Apache Airflow DAG的软件。 dag-factory 0.23.0a8及之前版本存在操作系统命令注入漏洞,该漏洞源于cicd.yml工作流配置不当,可能导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A