Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Celery <4.0 Redis unauthorized access + Pickle deserialization exploit 분석코드 및 결과 #177

Open
wants to merge 2 commits into
base: main
Choose a base branch
from

Conversation

tomorrow9913
Copy link

안녕하세요.
19반 정민규입니다.

제가 분석한 vulhub 문서는 Celery <4.0 Redis unauthorized access + Pickle deserialization exploit입니다.

해당 취약점과 같은 방식으로 Apache Airflow Celery Broker Remote Command Execution (CVE-2020-11981)를 증명할 수 있습니다.

해당 문서 역시 vulhub에도 공개되어있습니다.

review 부탁드립니다.

감사합니다.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant