Vulnerabilities in Airflow


I am by far not a security expert and I would like to use Airflow, but security is blocking the usage due to vulnerable aspects. When I asked the specifics they directed me to the given one The Airflow Celery workers deserialize pickle data that is stored in the message broker—Meaning that if I can get access to the message broker, I can achieve remote code execution inside the workers by a deserialization attack. This vulnerability was assigned CVE-2020-11982.

Originated from this blog. https://snyk.io/blog/message-brokers/

I am really getting the statement from them that Airflow is insecure. But it is the most popular, therefore there must be ways to secure it. Would there be any advise how to proceed?