CVE-2022-38649 — CVSS 9.8 (critical): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Pinot Provider…
CVE-2022-38054 — CVSS 9.8 (critical): In Apache Airflow versions 2.2.4 through 2.3.3, the `database` webserver session backend was susceptible to session fixation.
CVE-2017-17836 — CVSS 9.8 (critical): In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authenticated cookies, as well as passwords to databases…
CVE-2023-22884 — CVSS 9.8 (critical): Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache…
CVE-2020-11982 — CVSS 9.8 (critical): An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attack can connect to the broker (Redis…
CVE-2022-40189 — CVSS 9.8 (critical): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Pig Provider…
CVE-2021-38540 — CVSS 9.8 (critical): The variable import endpoint was not protected by authentication in Airflow >=2.0.0, <2.1.3. This allowed unauthenticated users to hit that…
CVE-2020-11981 — CVSS 9.8 (critical): An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the broker…
CVE-2026-42252 — CVSS 9.1 (critical): Apache Airflow's official documentation at `core-concepts/dag-run.html` ("Passing Parameters when triggering Dags") showed a verbatim…
CVE-2025-57735 — CVSS 9.1 (critical): When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case…
CVE-2026-42359 — CVSS 8.8 (high): A bug in Apache Airflow's XCom PATCH endpoint `PATCH /api/v2/xcomEntries/{key}` allowed an authenticated UI/API user with XCom write…
CVE-2024-45034 — CVSS 8.8 (high): Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add local settings to the DAG folder and get it…
CVE-2023-39508 — CVSS 8.8 (high): Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software…
CVE-2024-39877 — CVSS 8.8 (high): Apache Airflow 2.4.0, and versions before 2.9.3, has a vulnerability that allows authenticated DAG authors to craft a doc_md parameter in a…
CVE-2017-15720 — CVSS 8.8 (high): In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on the Airflow webserver by creating a special object.
CVE-2026-33858 — CVSS 8.8 (high): Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to…
CVE-2017-17835 — CVSS 8.8 (high): In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command injection on a default install of Airflow.
CVE-2026-30898 — CVSS 8.8 (high): An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitized user…
CVE-2022-24288 — CVSS 8.8 (high): In Apache Airflow, prior to version 2.2.4, some example DAGs did not properly sanitize user-provided params, making them susceptible to OS…
CVE-2022-40127 — CVSS 8.8 (high): A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who can trigger DAGs, to execute arbitrary commands via…
CVE-2026-49298 — CVSS 8.8 (high): A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed…
CVE-2024-45498 — CVSS 8.8 (high): Example DAG: example_inlet_event_extra.py shipped with Apache Airflow version 2.10.0 has a vulnerability that allows an authenticated…
CVE-2019-0229 — CVSS 8.8 (high): A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have adequate protection and were vulnerable to…
CVE-2024-56373 — CVSS 8.4 (high): DAG Author (who already has quite a lot of permissions) could manipulate database of Airflow 2 in the way to execute arbitrary code in the…
CVE-2026-30911 — CVSS 8.1 (high): Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop (HITL) endpoints…
CVE-2023-37379 — CVSS 8.1 (high): Apache Airflow, in versions prior to 2.7.0, contains a security vulnerability that can be exploited by an authenticated user possessing…
CVE-2022-41672 — CVSS 8.1 (high): In Apache Airflow, prior to version 2.4.1, deactivating a user wouldn't prevent an already authenticated user from being able to continue…
CVE-2024-28746 — CVSS 8.1 (high): Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenticated user with limited permissions to access…
CVE-2025-54550 — CVSS 8.1 (high): The example example_xcom that was included in airflow documentation implemented unsafe pattern of reading value from xcom in the way that…
CVE-2023-40273 — CVSS 8.0 (high): The session fixation vulnerability allowed the authenticated user to continue accessing Airflow webserver even after the password of the…
CVE-2022-41131 — CVSS 7.8 (high): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Hive Provider…
CVE-2020-17526 — CVSS 7.7 (high): Incorrect Session Validation in Apache Airflow Webserver versions prior to 1.10.14 with default config allows a malicious airflow user on…
CVE-2026-41084 — CVSS 7.5 (high): A bug in Apache Airflow's bulk Task Instances API (`PATCH/DELETE /api/v2/dags/{dag_id}/dagRuns/{dag_run_id}/taskInstances`) evaluated…
CVE-2026-28779 — CVSS 7.5 (high): Apache Airflow versions 3.1.0 through 3.1.7 session token (_token) in cookies is set to path=/ regardless of the configured [webserver]…
CVE-2022-27949 — CVSS 7.5 (high): A vulnerability in UI of Apache Airflow allows an attacker to view unmasked secrets in rendered template values for tasks which were not…
CVE-2023-50943 — CVSS 7.5 (high): Apache Airflow, versions before 2.8.1, have a vulnerability that allows a potential attacker to poison the XCom data by bypassing the…
CVE-2025-68675 — CVSS 7.5 (high): In Apache Airflow versions before 3.1.6, and 2.11.1 the proxies and proxy fields within a Connection may include proxy URLs containing…
CVE-2023-46215 — CVSS 7.5 (high): Insertion of Sensitive Information into Log File vulnerability in Apache Airflow Celery provider, Apache Airflow. Sensitive information…
CVE-2024-45784 — CVSS 7.5 (high): Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive configuration variables in task logs. This…
CVE-2022-40604 — CVSS 7.5 (high): In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.
CVE-2025-68438 — CVSS 7.5 (high): In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed [core] max_templated_field_length, sensitive values…
CVE-2025-66236 — CVSS 7.5 (high): Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay…
CVE-2026-30912 — CVSS 7.5 (high): In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/expose_stack_traces" was set to false. That could…
CVE-2018-20245 — CVSS 7.5 (high): The LDAP auth backend (airflow.contrib.auth.backends.ldap_auth) prior to Apache Airflow 1.10.1 was misconfigured and contained improper…
CVE-2026-32228 — CVSS 7.5 (high): UI / API User with asset materialize permission could trigger dags they had no access to. Users are advised to migrate to Airflow version…
CVE-2026-31987 — CVSS 7.5 (high): JWT Tokens used by tasks were exposed in logs. This could allow UI users to act as Dag Authors. Users are advised to upgrade to Airflow…
CVE-2026-25917 — CVSS 7.2 (high): Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to…
CVE-2026-40961 — CVSS 7.2 (high): A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check…
CVE-2026-40861 — CVSS 6.5 (medium): A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server…
CVE-2020-17511 — CVSS 6.5 (medium): In Airflow versions prior to 1.10.13, when creating a user using airflow CLI, the password gets logged in plain text in the Log table in…
CVE-2021-26559 — CVSS 6.5 (medium): Improper Access Control on Configurations Endpoint for the Stable API of Apache Airflow allows users with Viewer or User role to get…
CVE-2021-45230 — CVSS 6.5 (medium): In Apache Airflow prior to 2.2.0. This CVE applies to a specific case where a User who has "can_create" permissions on DAG Runs can create…
CVE-2022-46651 — CVSS 6.5 (medium): Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unauthorized actor to gain access to sensitive…
CVE-2023-22887 — CVSS 6.5 (medium): Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to perform unauthorized file access outside…
CVE-2023-22888 — CVSS 6.5 (medium): Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an attacker to cause a service disruption by manipulating…
CVE-2023-35005 — CVSS 6.5 (medium): In Apache Airflow, some potentially sensitive values were being shown to the user in certain situations. This vulnerability is mitigated by…
CVE-2023-35908 — CVSS 6.5 (medium): Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows unauthorized read access to a DAG through the URL. It is…
CVE-2023-36543 — CVSS 6.5 (medium): Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user can use crafted input to make the current request…
CVE-2023-40712 — CVSS 6.5 (medium): Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authenticated users who have access to see the task/dag…
CVE-2023-42663 — CVSS 6.5 (medium): Apache Airflow, versions before 2.7.2, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to…
CVE-2023-42780 — CVSS 6.5 (medium): Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows authenticated users of Airflow to list warnings for…
CVE-2023-42781 — CVSS 6.5 (medium): Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to…
CVE-2023-42792 — CVSS 6.5 (medium): Apache Airflow, in versions prior to 2.7.2, contains a security vulnerability that allows an authenticated user with limited access to some…
CVE-2023-49920 — CVSS 6.5 (medium): Apache Airflow, version 2.7.0 through 2.7.3, has a vulnerability that allows an attacker to trigger a DAG in a GET request without CSRF…
CVE-2023-50783 — CVSS 6.5 (medium): Apache Airflow, versions before 2.8.0, is affected by a vulnerability that allows an authenticated user without the variable edit…
CVE-2023-50944 — CVSS 6.5 (medium): Apache Airflow, versions before 2.8.1, have a vulnerability that allows an authenticated user to access the source code of a DAG to which…
CVE-2023-51702 — CVSS 6.5 (medium): Since version 5.2.0, when using deferrable mode with the path of a Kubernetes configuration file for authentication, the Airflow worker…
CVE-2025-27555 — CVSS 6.5 (medium): Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log access to see sensitive values in audit…
CVE-2025-54831 — CVSS 6.5 (medium): Apache Airflow 3 introduced a change to the handling of sensitive information in Connections. The intent was to restrict access to…
CVE-2025-65995 — CVSS 6.5 (medium): When a DAG failed during parsing, Airflow’s error-reporting in the UI could include the full kwargs passed to the operators. If those…
CVE-2025-66388 — CVSS 6.5 (medium): A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being…
CVE-2026-22922 — CVSS 6.5 (medium): Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permissions…
CVE-2026-24098 — CVSS 6.5 (medium): Apache Airflow versions 3.0.0 - 3.1.7, has vulnerability that allows authenticated UI users with permission to one or more specific Dags to…
CVE-2026-25219 — CVSS 6.5 (medium): The `access_key` and `connection_string` connection properties were not marked as sensitive names in secrets masker. This means that user…
CVE-2026-26929 — CVSS 6.5 (medium): Apache Airflow versions 3.0.0 through 3.1.7 FastAPI DagVersion listing API does not apply per-DAG authorization filtering when the request…
CVE-2026-34538 — CVSS 6.5 (medium): Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read…
CVE-2026-42358 — CVSS 6.5 (medium): A bug in Apache Airflow's Variable response masker caused nested-key redaction (triggered by secret-suffixed key names like `password`…
CVE-2026-42360 — CVSS 6.5 (medium): A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking (e.g. nested `password` / `token` / `secret`…
CVE-2026-45192 — CVSS 6.5 (medium): A bug in the GET `/api/v2/connections/{connection_id}` REST API endpoint in Apache Airflow allowed an authenticated UI/API user with…
CVE-2026-48726 — CVSS 6.5 (medium): A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the…
CVE-2021-45229 — CVSS 6.1 (medium): It was discovered that the "Trigger DAG with config" screen was susceptible to XSS attacks via the `origin` query argument. This issue…
CVE-2022-40754 — CVSS 6.1 (medium): In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver's `/confirm` endpoint.
CVE-2020-13944 — CVSS 6.1 (medium): In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit.
CVE-2017-12614 — CVSS 6.1 (medium): It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. Chrome will detect this as a reflected XSS…
CVE-2020-17515 — CVSS 6.1 (medium): The "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. This issue affects Apache Airflow…
CVE-2022-45402 — CVSS 6.1 (medium): In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's `/login` endpoint.
CVE-2024-41937 — CVSS 6.1 (medium): Apache Airflow, versions before 2.10.0, have a vulnerability that allows the developer of a malicious provider to execute a cross-site…
CVE-2022-43985 — CVSS 6.1 (medium): In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's `/confirm` endpoint.
CVE-2020-9485 — CVSS 6.1 (medium): An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the…
CVE-2021-28359 — CVSS 6.1 (medium): The "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. This issue affects Apache Airflow…
CVE-2022-43982 — CVSS 6.1 (medium): In Apache Airflow versions prior to 2.4.2, the "Trigger DAG with config" screen was susceptible to XSS attacks via the `origin` query…
CVE-2026-41017 — CVSS 5.9 (medium): Apache Airflow's `JWTRefreshMiddleware` set the JWT auth cookie without the `Secure` flag, so deployments running the Airflow API server…
CVE-2023-39441 — CVSS 5.9 (medium): Apache Airflow SMTP Provider before 1.3.0, Apache Airflow IMAP Provider before 3.3.0, and Apache Airflow before 2.7.0 are affected by the…
CVE-2026-49267 — CVSS 5.9 (medium): Apache Airflow's EmailOperator and the underlying `airflow.utils.email` helpers established SMTP STARTTLS connections without verifying the…
CVE-2026-41016 — CVSS 5.9 (medium): Apache Airflow's SMTP provider `SmtpHook` called Python's `smtplib.SMTP.starttls()` without an SSL context, so no certificate validation…
CVE-2024-27906 — CVSS 5.9 (medium): Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated users to view DAG code and import errors of DAGs they…
CVE-2024-25142 — CVSS 5.5 (medium): Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow. Airflow did not return "Cache-Control" header…
CVE-2018-20244 — CVSS 5.5 (medium): In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects in the Airflow metadata database to execute…
CVE-2022-40954 — CVSS 5.5 (medium): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Spark Provider…
CVE-2023-29247 — CVSS 5.4 (medium): Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0.
CVE-2024-39863 — CVSS 5.4 (medium): Apache Airflow versions before 2.9.3 have a vulnerability that allows an authenticated attacker to inject a malicious link when installing…
CVE-2020-11983 — CVSS 5.4 (medium): An issue was found in Apache Airflow versions 1.10.10 and below. It was discovered that many of the admin management screens in the…
CVE-2024-32077 — CVSS 5.4 (medium): Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance…
CVE-2023-47265 — CVSS 5.4 (medium): Apache Airflow, versions 2.6.0 through 2.7.3 has a stored XSS vulnerability that allows a DAG author to add an unbounded and not-sanitized…
CVE-2025-62402 — CVSS 5.4 (medium): API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the…
CVE-2024-29735 — CVSS 5.3 (medium): Improper Preservation of Permissions vulnerability in Apache Airflow.This issue affects Apache Airflow from 2.8.2 through 2.8.3. Airflow's…
CVE-2021-26697 — CVSS 5.3 (medium): The lineage endpoint of the deprecated Experimental API was not protected by authentication in Airflow 2.0.0. This allowed unauthenticated…
CVE-2023-25695 — CVSS 5.3 (medium): Generation of Error Message Containing Sensitive Information vulnerability in Apache Software Foundation Apache Airflow.This issue affects…
CVE-2020-17513 — CVSS 5.3 (medium): In Apache Airflow versions prior to 1.10.13, the Charts and Query View of the old (Flask-admin based) UI were vulnerable for SSRF attack.
CVE-2021-35936 — CVSS 5.3 (medium): If remote logging is not used, the worker (in the case of CeleryExecutor) or the scheduler (in the case of LocalExecutor) runs a Flask…
CVE-2021-29621 — CVSS 5.3 (medium): Flask-AppBuilder is a development framework, built on top of Flask. User enumeration in database authentication in Flask-AppBuilder <=…
CVE-2024-50378 — CVSS 4.9 (medium): Airflow versions before 2.10.3 have a vulnerability that allows authenticated users with audit log access to see sensitive values in audit…
CVE-2019-12417 — CVSS 4.8 (medium): A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page…
CVE-2019-0216 — CVSS 4.8 (medium): A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page…
CVE-2019-12398 — CVSS 4.8 (medium): In Apache Airflow before 1.10.5 when running with the "classic" UI, a malicious admin user could edit the state of objects in the Airflow…
CVE-2024-26280 — CVSS 4.7 (medium): Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated Ops and Viewers users to view all information on audit…
CVE-2022-38170 — CVSS 4.7 (medium): In Apache Airflow prior to 2.3.4, an insecure umask was configured for numerous Airflow components when running with the `--daemon` flag…
CVE-2025-54941 — CVSS 4.6 (medium): An example dag `example_dag_decorator` had non-validated parameter that allowed the UI user to redirect the example to a malicious server…
CVE-2025-62503 — CVSS 4.6 (medium): User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite…
CVE-2026-46764 — CVSS 4.3 (medium): The Event Log detail endpoint `GET /api/v2/eventLogs/{event_log_id}` in Apache Airflow fetched audit-log rows directly by numeric ID after…
CVE-2026-28563 — CVSS 4.3 (medium): Apache Airflow versions 3.1.0 through 3.1.7 /ui/dependencies endpoint returns the full DAG dependency graph without filtering by authorized…
CVE-2026-38743 — CVSS 4.3 (medium): The authenticated /ui/dags endpoint did not enforce per-DAG access control on embedded Human-in-the-Loop (HITL) and TaskInstance records: a…
CVE-2026-40690 — CVSS 4.3 (medium): The asset dependency graph did not restrict nodes by the viewer's DAG read permissions: a user with read access to at least one DAG could…
CVE-2023-47037 — CVSS 4.3 (medium): We failed to apply CVE-2023-40611 in 2.7.1 and this vulnerability was marked as fixed then. Apache Airflow, versions before 2.7.3, is…
CVE-2023-48291 — CVSS 4.3 (medium): Apache Airflow, in versions prior to 2.8.0, contains a security vulnerability that allows an authenticated user with limited access to some…
CVE-2023-46288 — CVSS 4.3 (medium): Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Airflow.This issue affects Apache Airflow from 2.4.0 to…
CVE-2026-41014 — CVSS 4.3 (medium): The partitioned_dag_runs endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated…
CVE-2023-40611 — CVSS 4.3 (medium): Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authenticated and DAG-view authorized Users to modify…
CVE-2023-45348 — CVSS 4.3 (medium): Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an authenticated user to retrieve sensitive…
CVE-2024-31869 — CVSS 4.3 (medium): Airflow versions 2.7.0 through 2.8.4 have a vulnerability that allows an authenticated user to see sensitive provider configuration via the…
CVE-2026-32690 — CVSS 3.7 (low): Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the secrets…
CVE-2026-40963 — CVSS 3.1 (low): The structure_data endpoint in the Airflow UI returned external dependency graph nodes for linked Dags without checking whether the caller…
CVE-2026-45426 — CVSS 3.1 (low): Exploitation requires the attacker to already be an authenticated Airflow worker holding a valid Log-server JWT issued for at least one…