Количество 4
Количество 4
CVE-2025-68438
In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed [core] max_templated_field_length, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include user-registered mask_secret() patterns, so secrets were not reliably masked before truncation and display. Users are recommended to upgrade to 3.1.6 or later, which fixes this issue
CVE-2025-68438
In Apache Airflow versions before 3.1.6, when rendered template fields ...
GHSA-3qmm-r55x-hpxx
Apache Airflow secrets in rendered templates could contain parts of sensitive values when truncated
BDU:2026-00683
Уязвимость функции mask_secret() сетевого программного средства Apache Airflow, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-68438 In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed [core] max_templated_field_length, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include user-registered mask_secret() patterns, so secrets were not reliably masked before truncation and display. Users are recommended to upgrade to 3.1.6 or later, which fixes this issue | CVSS3: 7.5 | 0% Низкий | 20 дней назад |
| CVE-2025-68438 In Apache Airflow versions before 3.1.6, when rendered template fields ... | CVSS3: 7.5 | 0% Низкий | 20 дней назад |
| GHSA-3qmm-r55x-hpxx Apache Airflow secrets in rendered templates could contain parts of sensitive values when truncated | CVSS3: 7.5 | 0% Низкий | 20 дней назад |
 | BDU:2026-00683 Уязвимость функции mask_secret() сетевого программного средства Apache Airflow, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 7.5 | 0% Низкий | 22 дня назад |
Уязвимостей на страницу