2 matches found
GHSA-4M3H-WP5W-5HQH Apache Airflow: Wildcard DagVersion Listing Bypasses Per‑DAG RBAC and Leaks Metadata
Apache Airflow versions 3.0.0 through 3.1.7 FastAPI DagVersion listing API does not apply per-DAG authorization filtering when the request is made with dagid set to "" wildcard for all DAGs. As a result, version metadata of DAGs that the requester is not authorized to access is returned. Users ar...
CVE-2026-26929
CVE-2026-26929 affects Apache Airflow versions 3.0.0–3.1.7 where the FastAPI DagVersion listing API does not apply per-DAG authorization filtering when dag_id is “~” (wildcard). This allows a requester to retrieve version metadata for DAGs they are not authorized to access. The public advisories ...