Lucene search
K

5 matches found

OSV
OSV
added 2026/06/01 9:16 a.m.7 views

PYSEC-2026-172

A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking e.g. nested password / token / secret / apikey keys inside a JSON template structure to be bypassed when the rendered field exceeded core maxtemplatedfieldlength: Airflow stringified the structure befor...

6.5CVSS5.8AI score0.00335EPSS
Exploits0References2
CVE
CVE
added 2026/06/01 7:50 a.m.25 views

CVE-2026-42360

Apache Airflow CVE-2026-42360 describes a vulnerability in the rendered-template field handling where nested sensitive-keys (password/token/secret/api_key) could be exposed if the rendered field exceeded max_templated_field_length. The bug occurs because the structure is stringified before redact...

6.5CVSS5.8AI score0.00335EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/01/21 8:39 a.m.6 views

BIT-AIRFLOW-2025-68438 Apache Airflow: Secrets in rendered templates could contain parts of sensitive values when truncated

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed core maxtemplatedfieldlength, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include...

7.5CVSS5.5AI score0.00586EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/01/16 12:30 p.m.10 views

Apache Airflow secrets in rendered templates could contain parts of sensitive values when truncated

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed core maxtemplatedfieldlength, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include...

7.5CVSS6.8AI score0.00586EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/01/16 10:6 a.m.5 views

CVE-2025-68438 Apache Airflow: Secrets in rendered templates could contain parts of sensitive values when truncated

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed core maxtemplatedfieldlength, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include...

7.5CVSS7.1AI score0.00586EPSS
Exploits0References5
Rows per page
Query Builder