
Authentication Bypass in Apache Airflow - CVE-2020-17526 and AWS Cloud Platform compromise
An authentication bypass within Apache Airflow allowed an attacker to login as any user in the Airflow system. Post exploitation within the app, led to a full cloud account compromise on AWS.