CVE-2023-45348 - How Authenticated Attackers Can Leak Apache Airflow Config With “expose_config” Mistake
Apache Airflow is a hugely popular open-source platform for orchestrating complex workflows. But even the best tools sometimes have security issues. In this article, I’
CVE-2023-42792 - How Apache Airflow Users Could Escalate Privileges and Manipulate DAGs
Apache Airflow is a powerful open-source platform for orchestrating complex workflows and data pipelines. But with great power comes the responsibility to keep your pipelines
CVE-2023-40611 - How Authenticated Users Could Tamper with DAG Run Details in Apache Airflow <2.7.1
Apache Airflow is a popular open-source platform for workflow orchestration. It’s used by data engineers and teams across many industries for automation and scheduling.
CVE-2023-40712 - Unmasking Secret Configurations in Apache Airflow Before 2.7.1
Apache Airflow is an open-source tool used by thousands of companies to programmatically author, schedule, and monitor workflows. However, a critical vulnerability has been discovered
CVE-2023-36543 - Denial-of-Service (DoS) Vulnerability in Apache Airflow Before 2.6.3 – Explained
Apache Airflow is a popular open-source platform used to programmatically schedule and monitor workflows. Keeping it secure is critical because its users often have access
Episode
00:00:00
00:00:00