MidnightBSD

Advisories for celeryproject

CVE-2011-4356 MEDIUM

Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effective id but not the real id during processing of the --uid and --gid arguments to celerybeat, celeryd_detach, celeryd-multi, and celeryev, which allows local users to gain privileges via vectors involving crafted code that is executed by the worker process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
celeryproject celery 2.2.6
celeryproject celery 2.2.7
celeryproject celery 2.3.1
celeryproject celery 2.2.3
celeryproject celery 2.3.2
celeryproject celery 2.4.1
celeryproject celery 2.4.2
celeryproject celery 2.3.0
celeryproject celery 2.3.3
celeryproject celery 2.4.3
celeryproject celery 2.1.0
celeryproject celery 2.2.2
celeryproject celery 2.2.0
celeryproject celery 2.2.5
celeryproject celery 2.4.0
celeryproject celery 2.2.4
celeryproject celery 2.2.1
CVE-2021-23727 MEDIUM

This affects the package celery before 5.2.2. It by default trusts the messages and metadata stored in backends (result stores). When reading task metadata from the backend, the data is deserialized. Given that an attacker can gain access to, or somehow manipulate the metadata within a celery backend, they could trigger a stored command injection vulnerability and potentially gain further access to the system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
report@snyk.io 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.6 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
fedoraproject extra_packages_for_enterprise_linux 7.0
fedoraproject fedora 35
celeryproject celery *