apache-airflow vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2022-40127Highapache-airflow: Apache Airflow vulnerable to OS Command Injection via example DAGsCVE-2022-27949Highapache-airflow: Apache Airflow subject to Exposure of Sensitive InformationCVE-2022-43982Mediumapache-airflow: Apache Airflow Cross-site Scripting vulnerabilityCVE-2022-43985Mediumapache-airflow: Apache Airflow Open Redirect vulnerabilityCVE-2022-41672Highapache-airflow: Apache Airflow may allow authenticated users who have been deactivated to continue using the UI or…CVE-2022-40604Highapache-airflow: Apache Airflow vulnerable to Use of Externally-Controlled Format StringCVE-2022-40754Mediumapache-airflow: Apache Airflow contains open redirectCVE-2022-38170Mediumapache-airflow: Apache Airflow exposes arbitrary file contentCVE-2022-38054Criticalapache-airflow: Apache Airflow Session Fixation vulnerabilityCVE-2021-38540Criticalapache-airflow: Missing Authentication for Critical Function in Apache AirflowCVE-2017-12614Mediumapache-airflow: Apache Airflow Reflected Cross-site Scripting vulnerability in 404 EndpointCVE-2021-45229Mediumapache-airflow: Apache Airflow Cross-site Scripting VulnerabilityCVE-2022-24288Highapache-airflow: OS Command injection in Apache AirflowCVE-2021-45230Mediumapache-airflow: Improper Privilege Management in apache-airflowCVE-2021-35936Mediumapache-airflow: Missing Authorization in Apache AirflowCVE-2021-28359Mediumapache-airflow: Cross-site Scripting in Apache AirflowCVE-2021-26697Mediumapache-airflow: Improper Authentication in Apache AirflowCVE-2020-13944Mediumapache-airflow: Apache Airflow Cross-site Scripting CVE-2020-13927Criticalapache-airflow: Authentication bypass in Apache AirflowCVE-2020-17526Highapache-airflow: Incorrect Session Validation in Apache AirflowCVE-2020-17515Mediumapache-airflow: Apache Airflow cross-site scripting due to incomplete fix for CVE-2020-13944CVE-2021-26559Highapache-airflow: Improper Access Control in Apache AirflowCVE-2020-17513Mediumapache-airflow: SSRF vulnerability in Apache AirflowCVE-2020-17511Lowapache-airflow: Apache Airflow logs passwords in plaintextCVE-2020-9485Mediumapache-airflow: Stored XSS in Apache Airflow

Stop the waste.
Protect your environment with Kodem.