{"vulnerability": "cve-2022-24288", "sightings": [{"uuid": "80b7b434-3924-41f1-a9bd-5cb85741e2f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24288", "type": "seen", "source": "https://t.me/cibsecurity/38073", "content": "\u203c CVE-2022-24288 \u203c\n\nIn Apache Airflow, prior to version 2.2.4, some example DAGs did not properly sanitize user-provided params, making them susceptible to OS Command Injection from the web UI.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-25T12:20:26.000000Z"}, {"uuid": "f5bbfbff-bf50-434a-a86f-ddb73f1bb3c0", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24288", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/02da75b0-0944-4f8c-8784-978777678f0c", "content": "", "creation_timestamp": "2026-06-23T14:06:17.229381Z"}]}