CVE-2024-28423 | Airflow-Diagrams 2.1.0 YML File cli.py unsafe_load unrestricted upload

CVE-2024-28423 | Airflow-Diagrams 2.1.0 YML File cli.py unsafe_load unrestricted upload

A vulnerability was found in Airflow-Diagrams 2.1.0 and classified as critical. Affected by this issue is the function unsafe_load of the file cli.py of the component YML File Handler. The manipulation leads to unrestricted upload. This vulnerability is handled as CVE-2024-28423. The attack may be launched remotely. There is no exploit available.