.. / CVE-2020-17526

Exploit for Apache Airflow <1.10.14 - Authentication Bypass (CVE-2020-17526)

Description:

Apache Airflow prior to 1.10.14 contains an authentication bypass vulnerability via incorrect session validation with default configuration. An attacker on site A can access unauthorized Airflow on site B through the site A session.

Nuclei Template

View the template here CVE-2020-17526.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-17526.yaml

References:

https://lists.apache.org/thread.html/r466759f377651f0a690475d5a52564d0e786e82c08d5a5730a4f8352@%3Cannounce.apache.org%3E
https://lists.apache.org/thread.html/rbeeb73a6c741f2f9200d83b9c2220610da314810c4e8c9cf881d47ef%40%3Cusers.airflow.apache.org%3E
https://kloudle.com/academy/authentication-bypass-in-apache-airflow-cve-2020-17526-and-aws-cloud-platform-compromise
http://www.openwall.com/lists/oss-security/2020/12/21/1
https://nvd.nist.gov/vuln/detail/CVE-2020-17526

.. / CVE-2020-17526 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Apache Airflow <1.10.14 - Authentication Bypass (CVE-2020-17526)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2020-17526