Celeryproject Celery
By the Year
In 2024 there have been 0 vulnerabilities in Celeryproject Celery . Celery did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 7.50 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Celery vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Celeryproject Celery Security Vulnerabilities
This affects the package celery before 5.2.2
CVE-2021-23727
7.5 - High
- December 29, 2021
This affects the package celery before 5.2.2. It by default trusts the messages and metadata stored in backends (result stores). When reading task metadata from the backend, the data is deserialized. Given that an attacker can gain access to, or somehow manipulate the metadata within a celery backend, they could trigger a stored command injection vulnerability and potentially gain further access to the system.
Command Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Fedora Project Extra Packages Enterprise Linux or by Celeryproject? Click the Watch button to subscribe.
