airflow · threatengine.sh

CVE-2026-41016

>= 2.0.0 and < 3.0.0

Apache Airflow's SMTP provider SmtpHook called Python's smtplib.SMTP.starttls() without an SSL context, so no certificate vali

5.9MEDIUM

CVE-2026-40690

< 3.2.1

The asset dependency graph did not restrict nodes by the viewer's DAG read permissions: a user with read access to at least one DA

4.3MEDIUM

CVE-2026-38743

< 3.2.1

The authenticated /ui/dags endpoint did not enforce per-DAG access control on embedded Human-in-the-Loop (HITL) and TaskInstance

4.3MEDIUM

CVE-2026-32690

>= 3.0.0 and < 3.2.0

Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the

3.7LOW

CVE-2026-32228

>= 3.0.0 and < 3.2.0

UI / API User with asset materialize permission could trigger dags they had no access to. Users are advised to migrate to Airflow

7.5HIGH

CVE-2026-30912

< 3.2.0

In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/expose_stack_traces" was set to false. That

7.5HIGH

CVE-2026-30898

< 3.2.0

An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitize

8.8HIGH

CVE-2026-25917

< 3.2.0

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserv

7.2HIGH

CVE-2026-31987

>= 3.0.0 and < 3.2.0

JWT Tokens used by tasks were exposed in logs. This could allow UI users to act as Dag Authors. Users are advised to upgrade to A

7.5HIGH

CVE-2026-25219

< 3.2.0

The access_key and connection_string connection properties were not marked as sensitive names in secrets masker. This means th

6.5MEDIUM

CVE-2025-54550

< 3.2.0

The example example_xcom that was included in airflow documentation implemented unsafe pattern of reading value from xcom in the

8.1HIGH

CVE-2026-33858

>= 3.1.8 and < 3.2.0

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserv

8.8HIGH

CVE-2025-66236

>= 3.0.0 and < 3.2.0

Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions an

7.5HIGH

CVE-2025-57735

>= 3.0.0 and < 3.2.0

When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token

9.1CRITICAL

CVE-2026-34538

>= 3.0.0 and < 3.2.0

Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run re

6.5MEDIUM

CVE-2026-30911

>= 3.1.0 and < 3.1.8

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop (HITL) en

8.1HIGH

CVE-2026-28779

>= 3.0.0 and < 3.1.8

Apache Airflow versions 3.1.0 through 3.1.7 session token (_token) in cookies is set to path=/ regardless of the configured [webs

7.5HIGH

CVE-2026-28563

>= 3.0.0 and < 3.1.8

Apache Airflow versions 3.1.0 through 3.1.7 /ui/dependencies endpoint returns the full DAG dependency graph without filtering by a

4.3MEDIUM

CVE-2026-26929

>= 3.0.0 and < 3.1.8

Apache Airflow versions 3.0.0 through 3.1.7 FastAPI DagVersion listing API does not apply per-DAG authorization filtering when th

6.5MEDIUM

CVE-2025-27555

< 2.11.1

Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log access to see sensitive values

6.5MEDIUM

CVE-2024-56373

< 2.11.1

DAG Author (who already has quite a lot of permissions) could manipulate database of Airflow 2 in the way to execute arbitrary cod

8.4HIGH

CVE-2025-65995

< 2.11.1

When a DAG failed during parsing, Airflow’s error-reporting in the UI could include the full kwargs passed to the operators. If

6.5MEDIUM

CVE-2026-24098

>= 3.0.0 and < 3.1.7

Apache Airflow versions 3.0.0 - 3.1.7, has vulnerability that allows authenticated UI users with permission to one or more specifi

6.5MEDIUM

CVE-2026-22922

>= 3.1.0 and < 3.1.7

Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permiss

6.5MEDIUM

CVE-2025-68675

< 3.1.6

In Apache Airflow versions before 3.1.6, and 2.11.1 the proxies and proxy fields within a Connection may include proxy URLs contai

7.5HIGH

CVE-2025-68438

>= 3.1.0 and < 3.1.6

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed [core] max_templated_field_length, sensiti

7.5HIGH

CVE-2025-66388

>= 3.1.0 and < 3.1.4

A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not be

6.5MEDIUM

CVE-2025-62503

>= 3.0.0 and < 3.1.1

User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with

4.6MEDIUM

CVE-2025-62402

>= 3.0.0 and < 3.1.1

API users via /api/v2/dagReports could perform Dag code execution in the context of the api-server if the api-server was deploye

5.4MEDIUM

CVE-2025-54941

>= 3.0.0 and < 3.0.5

An example dag example_dag_decorator had non-validated parameter that allowed the UI user to redirect the example to a malicious

4.6MEDIUM

CVE-2025-54831

all versions

Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to

6.5MEDIUM

CVE-2024-45784

< 2.10.3

Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive configuration variables in task logs. Th

7.5HIGH

CVE-2024-50378

< 2.10.3

Airflow versions before 2.10.3 have a vulnerability that allows authenticated users with audit log access to see sensitive values

4.9MEDIUM

CVE-2024-45498

all versions

Example DAG: example_inlet_event_extra.py shipped with Apache Airflow version 2.10.0 has a vulnerability that allows an authentica

8.8HIGH

CVE-2024-45034

< 2.10.1

Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add local settings to the DAG folder and ge

8.8HIGH

CVE-2024-41937

< 2.10.0

Apache Airflow, versions before 2.10.0, have a vulnerability that allows the developer of a malicious provider to execute a cross-

6.1MEDIUM

CVE-2024-39877

>= 2.4.0 and < 2.9.3

Apache Airflow 2.4.0, and versions before 2.9.3, has a vulnerability that allows authenticated DAG authors to craft a doc_md param

8.8HIGH

CVE-2024-39863

< 2.9.3

Apache Airflow versions before 2.9.3 have a vulnerability that allows an authenticated attacker to inject a malicious link when in

5.4MEDIUM

CVE-2024-25142

< 2.9.2

Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow. Airflow did not return "Cache-Contro

5.5MEDIUM

CVE-2024-32077

all versions

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task inst

5.4MEDIUM

CVE-2024-31869

>= 2.7.0 and < 2.9.0

Airflow versions 2.7.0 through 2.8.4 have a vulnerability that allows an authenticated user to see sensitive provider configuratio

4.3MEDIUM

CVE-2024-29735

>= 2.8.2 and <= 2.8.4

Improper Preservation of Permissions vulnerability in Apache Airflow.This issue affects Apache Airflow from 2.8.2 through 2.8.3.

5.3MEDIUM

CVE-2024-28746

>= 2.8.0 and < 2.8.3

Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenticated user with limited permissions to ac

8.1HIGH

CVE-2024-26280

< 2.8.2

Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated Ops and Viewers users to view all information

4.7MEDIUM

CVE-2024-27906

< 2.8.2

Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated users to view DAG code and import errors of D

5.9MEDIUM

CVE-2023-51702

>= 2.3.0 and < 2.6.1

Since version 5.2.0, when using deferrable mode with the path of a Kubernetes configuration file for authentication, the Airflow w

6.5MEDIUM

CVE-2023-50944

< 2.8.1

Apache Airflow, versions before 2.8.1, have a vulnerability that allows an authenticated user to access the source code of a DAG t

6.5MEDIUM

CVE-2023-50943

< 2.8.1

Apache Airflow, versions before 2.8.1, have a vulnerability that allows a potential attacker to poison the XCom data by bypassing

7.5HIGH

CVE-2023-50783

< 2.8.0

Apache Airflow, versions before 2.8.0, is affected by a vulnerability that allows an authenticated user without the variable edit

6.5MEDIUM

CVE-2023-49920

>= 2.7.0 and <= 2.7.3

Apache Airflow, version 2.7.0 through 2.7.3, has a vulnerability that allows an attacker to trigger a DAG in a GET request without

6.5MEDIUM

CVE-2023-48291

< 2.8.0

Apache Airflow, in versions prior to 2.8.0, contains a security vulnerability that allows an authenticated user with limited acces

4.3MEDIUM

CVE-2023-47265

>= 2.6.0 and <= 2.7.3

Apache Airflow, versions 2.6.0 through 2.7.3 has a stored XSS vulnerability that allows a DAG author to add an unbounded and not-s

5.4MEDIUM

CVE-2023-47037

< 2.7.3

We failed to apply CVE-2023-40611 in 2.7.1 and this vulnerability was marked as fixed then. Apache Airflow, versions before 2.

4.3MEDIUM

CVE-2023-42781

< 2.7.3

Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs onl

6.5MEDIUM

CVE-2023-46215

>= 1.10.0 and < 2.7.0

Insertion of Sensitive Information into Log File vulnerability in Apache Airflow Celery provider, Apache Airflow. Sensitive infor

7.5HIGH

CVE-2023-46288

>= 2.4.0 and < 2.7.0

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Airflow.This issue affects Apache Airflow from

4.3MEDIUM

CVE-2023-45348

>= 2.7.0 and < 2.7.2

Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an authenticated user to retrieve sensitive c

4.3MEDIUM

CVE-2023-42792

< 2.7.2

Apache Airflow, in versions prior to 2.7.2, contains a security vulnerability that allows an authenticated user with limited acces

6.5MEDIUM

CVE-2023-42780

< 2.7.2

Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows authenticated users of Airflow to list warn

6.5MEDIUM

CVE-2023-42663

< 2.7.2

Apache Airflow, versions before 2.7.2, has a vulnerability that allows an authorized user who has access to read specific DAGs onl

6.5MEDIUM

CVE-2023-40712

< 2.7.1

Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authenticated users who have access to see the

6.5MEDIUM

CVE-2023-40611

< 2.7.3

Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authenticated and DAG-view authorized Users to

4.3MEDIUM

CVE-2023-40273

<= 2.7.0

The session fixation vulnerability allowed the authenticated user to continue accessing Airflow webserver even after the password

8.0HIGH

CVE-2023-39441

< 2.7.0

Apache Airflow SMTP Provider before 1.3.0, Apache Airflow IMAP Provider before 3.3.0, and Apache Airflow before 2.7.0 are affecte

5.9MEDIUM

CVE-2023-37379

< 2.7.0

Apache Airflow, in versions prior to 2.7.0, contains a security vulnerability that can be exploited by an authenticated user posse

8.1HIGH

CVE-2023-39508

< 2.6.0

Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Softwa

8.8HIGH

CVE-2023-36543

< 2.6.3

Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user can use crafted input to make the current r

6.5MEDIUM

CVE-2023-35908

< 2.6.3

Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows unauthorized read access to a DAG through the UR

6.5MEDIUM

CVE-2023-22888

< 2.6.3

Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to cause a service disruption by man

6.5MEDIUM

CVE-2023-22887

< 2.6.3

Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to perform unauthorized file access

6.5MEDIUM

CVE-2022-46651

< 2.6.3

Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unauthorized actor to gain access to sensitiv

6.5MEDIUM

CVE-2023-35005

>= 2.5.0 and < 2.6.2

In Apache Airflow, some potentially sensitive values were being shown to the user in certain situations. This vulnerability is mi

6.5MEDIUM

CVE-2023-25754

< 2.6.0

Privilege Context Switching Error vulnerability in Apache Software Foundation Apache Airflow.This issue affects Apache Airflow: be

9.8CRITICAL

CVE-2023-29247

< 2.6.0

Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0.

5.4MEDIUM

CVE-2023-25695

< 2.5.2

Generation of Error Message Containing Sensitive Information vulnerability in Apache Software Foundation Apache Airflow.This issue

5.3MEDIUM

CVE-2023-22884

< 2.5.1

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Ap

9.8CRITICAL

CVE-2022-41131

< 2.3.0

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Hive Pr

7.8HIGH

CVE-2022-40954

< 2.3.0

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Spark P

5.5MEDIUM

CVE-2022-40189

< 2.3.0

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Pig Pro

9.8CRITICAL

CVE-2022-38649

< 2.3.0

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Pinot P

9.8CRITICAL

CVE-2022-45402

< 2.4.3

In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint.

6.1MEDIUM

CVE-2022-40127

< 2.4.0

A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who can trigger DAGs, to execute arbitrary com

8.8HIGH

CVE-2022-27949

< 2.3.1

A vulnerability in UI of Apache Airflow allows an attacker to view unmasked secrets in rendered template values for tasks which we

7.5HIGH

CVE-2022-43985

< 2.4.2

In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's /confirm endpoint.

6.1MEDIUM

CVE-2022-43982

< 2.4.2

In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the origin qu

6.1MEDIUM

CVE-2022-41672

<= 2.4.1

In Apache Airflow, prior to version 2.4.1, deactivating a user wouldn't prevent an already authenticated user from being able to c

8.1HIGH

CVE-2022-40754

>= 2.3.0 and <= 2.3.4

In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver's /confirm endpoint.

6.1MEDIUM

CVE-2022-40604

>= 2.3.0 and <= 2.3.4

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.

7.5HIGH

CVE-2022-38170

< 2.3.4

In Apache Airflow prior to 2.3.4, an insecure umask was configured for numerous Airflow components when running with the `--daemon

4.7MEDIUM

CVE-2022-38054

>= 2.2.4 and <= 2.3.3

In Apache Airflow versions 2.2.4 through 2.3.3, the database webserver session backend was susceptible to session fixation.

9.8CRITICAL

CVE-2022-24288

< 2.2.4

In Apache Airflow, prior to version 2.2.4, some example DAGs did not properly sanitize user-provided params, making them susceptib

8.8HIGH

CVE-2021-45229

<= 2.2.3

It was discovered that the "Trigger DAG with config" screen was susceptible to XSS attacks via the origin query argument. This i

6.1MEDIUM

CVE-2021-45230

>= 1.10.0 and <= 1.10.15

In Apache Airflow prior to 2.2.0. This CVE applies to a specific case where a User who has "can_create" permissions on DAG Runs ca

6.5MEDIUM

CVE-2021-38540

>= 2.0.0 and < 2.1.3

The variable import endpoint was not protected by authentication in Airflow >=2.0.0, <2.1.3. This allowed unauthenticated users to

9.8CRITICAL

CVE-2021-35936

< 2.1.2

If remote logging is not used, the worker (in the case of CeleryExecutor) or the scheduler (in the case of LocalExecutor) runs a F

5.3MEDIUM

CVE-2021-29621

all versions

Flask-AppBuilder is a development framework, built on top of Flask. User enumeration in database authentication in Flask-AppBuilde

5.3MEDIUM

CVE-2021-28359

>= 1.0.0 and < 1.10.15

The "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. This issue affects Apache Ai

6.1MEDIUM

CVE-2021-26697

all versions

The lineage endpoint of the deprecated Experimental API was not protected by authentication in Airflow 2.0.0. This allowed unauthe

5.3MEDIUM

CVE-2021-26559

all versions

Improper Access Control on Configurations Endpoint for the Stable API of Apache Airflow allows users with Viewer or User role to g

6.5MEDIUM

CVE-2020-17526

< 1.10.14

Incorrect Session Validation in Apache Airflow Webserver versions prior to 1.10.14 with default config allows a malicious airflow

7.7HIGH

CVE-2020-17513

< 1.10.13

In Apache Airflow versions prior to 1.10.13, the Charts and Query View of the old (Flask-admin based) UI were vulnerable for SSRF

5.3MEDIUM

CVE-2020-17511

< 1.10.13

In Airflow versions prior to 1.10.13, when creating a user using airflow CLI, the password gets logged in plain text in the Log ta

6.5MEDIUM

CVE-2020-17515

< 1.10.15

The "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. This issue affects Apache Ai

6.1MEDIUM

CVE-2020-13927

< 1.10.11

The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses s

9.8CRITICAL

CVE-2020-13944

< 1.10.15

In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit.

6.1MEDIUM

CVE-2020-9485

<= 1.10.10

An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of t

6.1MEDIUM

CVE-2020-11983

<= 1.10.10

An issue was found in Apache Airflow versions 1.10.10 and below. It was discovered that many of the admin management screens in th

5.4MEDIUM

CVE-2020-11982

<= 1.10.10

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attack can connect to the broker

9.8CRITICAL

CVE-2020-11981

<= 1.10.10

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the brok

9.8CRITICAL

CVE-2020-11978

< 1.10.11

An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in o

8.8HIGH

CVE-2019-12398

< 1.10.5

In Apache Airflow before 1.10.5 when running with the "classic" UI, a malicious admin user could edit the state of objects in the

4.8MEDIUM

CVE-2019-12417

<= 1.10.5

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain

4.8MEDIUM

CVE-2019-0229

<= 1.10.2

A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have adequate protection and were vulnerable t

8.8HIGH

CVE-2019-0216

<= 1.10.2

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain

4.8MEDIUM

CVE-2018-20244

< 1.10.2

In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects in the Airflow metadata database to execut

5.5MEDIUM

CVE-2018-20245

< 1.10.1

The LDAP auth backend (airflow.contrib.auth.backends.ldap_auth) prior to Apache Airflow 1.10.1 was misconfigured and contained imp

7.5HIGH

CVE-2017-17836

<= 1.8.2

In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authenticated cookies, as well as passwords to data

9.8CRITICAL

CVE-2017-17835

<= 1.8.2

In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.

8.8HIGH

CVE-2017-15720

<= 1.8.2

In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on the Airflow webserver by creating a specia

8.8HIGH

CVE-2017-12614

< 1.9.0

It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. Chrome will detect this as a reflecte

6.1MEDIUM

apache airflow