VulnerableCode Package Details - pkg:pypi/celery@2.4.4

Search for packages

Vulnerability	Summary	Fixed by
VCID-6ufy-jmp3-vudd Aliases: CVE-2021-23727 GHSA-q4xr-rc97-m4xx PYSEC-2021-858 SNYK-PYTHON-CELERY-2314953	OS Command Injection in celery	5.2.2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-6ufy-jmp3-vudd
Aliases:
CVE-2021-23727
GHSA-q4xr-rc97-m4xx
PYSEC-2021-858
SNYK-PYTHON-CELERY-2314953

OS Command Injection in celery

5.2.2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-mxmr-f6tw-a3aw	Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effective id but not the real id during processing of the --uid and --gid arguments to celerybeat, celeryd_detach, celeryd-multi, and celeryev, which allows local users to gain privileges via vectors involving crafted code that is executed by the worker process.	CVE-2011-4356 GHSA-rpc6-h455-3rx5 PYSEC-2011-17

Vulnerability

Summary

Aliases

VCID-mxmr-f6tw-a3aw

Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effective id but not the real id during processing of the --uid and --gid arguments to celerybeat, celeryd_detach, celeryd-multi, and celeryev, which allows local users to gain privileges via vectors involving crafted code that is executed by the worker process.

CVE-2011-4356
GHSA-rpc6-h455-3rx5
PYSEC-2011-17

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T08:57:13.929340+00:00	GHSA Importer	Fixing	VCID-mxmr-f6tw-a3aw	https://github.com/advisories/GHSA-rpc6-h455-3rx5	38.6.0
2026-06-12T18:15:55.022015+00:00	GitLab Importer	Fixing	VCID-mxmr-f6tw-a3aw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/celery/CVE-2011-4356.yml	38.6.0
2026-06-12T17:54:47.251347+00:00	GitLab Importer	Affected by	VCID-6ufy-jmp3-vudd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/celery/CVE-2021-23727.yml	38.6.0
2026-06-12T08:24:19.967358+00:00	GithubOSV Importer	Fixing	VCID-mxmr-f6tw-a3aw	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rpc6-h455-3rx5/GHSA-rpc6-h455-3rx5.json	38.6.0
2026-06-12T04:14:00.419751+00:00	Pypa Importer	Affected by	VCID-6ufy-jmp3-vudd	https://github.com/pypa/advisory-database/blob/main/vulns/celery/PYSEC-2021-858.yaml	38.6.0
2026-06-12T04:00:34.105420+00:00	Pypa Importer	Fixing	VCID-mxmr-f6tw-a3aw	https://github.com/pypa/advisory-database/blob/main/vulns/celery/PYSEC-2011-17.yaml	38.6.0
2026-06-11T20:55:46.585136+00:00	PyPI Importer	Affected by	VCID-6ufy-jmp3-vudd	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:41:54.988530+00:00	PyPI Importer	Fixing	VCID-mxmr-f6tw-a3aw	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0