Design/Logic Flaw

Insertion of Sensitive Information into Log File vulnerability in Apache Airflow Celery provider, Apache Airflow. Sensitive information logged as clear text when rediss, amqp, rpc protocols are used as Celery result backend Note: the vulnerability is about the information exposed in the logs not...

apache-airflow-providers-celery (>=2.1.0 <=2.1.0rc2), celery-director (>=0.5.0 <=0.6.0) +4 more potentially affected by CVE-2022-30034 via flower (>=0.9.3 <=1.1.0)

flower PYPI version =0.9.3, =2.1.0, =0.5.0, =0.6.0, =0.2.1a0, =2.10.9 Source cves: CVE-2022-30034 Source advisory: OSV:GHSA-Q4QM-XHF9-4P8F...