{"vulnerability": "CVE-2022-40127", "sightings": [{"uuid": "a78411ef-1c69-4b7a-ad65-544ca5447a77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/cKure/10482", "content": "\u25a0\u25a1\u25a1\u25a1\u25a1 Apache Airflow < 2.4.0 DAG example_bash_operator RCE POC.\n\nhttps://github.com/Mr-xn/CVE-2022-40127", "creation_timestamp": "2022-11-24T13:01:10.000000Z"}, {"uuid": "b6e90f2e-c54b-4c64-a708-1525d61ca0ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14131", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40127\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who can trigger DAGs, to execute arbitrary commands via manually provided run_id parameter. This issue affects Apache Airflow Apache Airflow versions prior to 2.4.0.\n\ud83d\udccf Published: 2022-11-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-30T18:58:45.160Z\n\ud83d\udd17 References:\n1. https://github.com/apache/airflow/pull/25960\n2. https://lists.apache.org/thread/cf132hgm6jvzvsbpsozl3plf1r4cwysy\n3. http://www.openwall.com/lists/oss-security/2022/11/14/2", "creation_timestamp": "2025-04-30T19:13:45.000000Z"}, {"uuid": "95cd6b66-052d-47f3-8cc0-9aa9e39dd78d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7200", "content": "#exploit\n1. CVE-2022-40127:\nApache Airflow <2.4.0 DAG example_bash_operator RCE\nhttps://github.com/Mr-xn/CVE-2022-40127\n\n2. Chromium V8 Engine Exploits\nhttps://github.com/anvbis/chrome.v8.n-days", "creation_timestamp": "2022-11-19T13:07:01.000000Z"}, {"uuid": "e4acc017-a683-4ef4-a703-d3ddb6da13ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/ctinow/85158", "content": "Internet Bug Bounty: CVE-2022-40127: RCE in Apache Airflow <2.4.0 bash example\n\nhttps://ift.tt/K1mhCXI", "creation_timestamp": "2023-01-05T19:31:50.000000Z"}, {"uuid": "4e971875-a0eb-4752-8e03-a1c0a126f65f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/intelexch/34113", "content": "https://github.com/Mr-xn/CVE-2022-40127", "creation_timestamp": "2022-11-19T15:29:51.000000Z"}, {"uuid": "59cf9529-74f9-45dd-aa90-00a29886a322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40127", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/1424", "content": "https://github.com/Mr-xn/CVE-2022-40127", "creation_timestamp": "2022-11-20T22:47:46.000000Z"}]}