Apache Airflow: Airflow externalLogUrl Permission Bypass_CVE-2026-22922

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permissions limited to task access to view task logs without having task log access.

Users are recommended to upgrade to Apache Airflow 3.1.7 or later, which resolves this issue.

Basic Information

ID CVE-2026-22922

Source apache

Published Feb 9, 2026 at 10:33

Modified Feb 9, 2026 at 17:18

Affected Product

Vendor Apache Software Foundation

Product Apache Airflow

Version 3.1.0

Affected Versions Apache Software Foundation Apache Airflow 3.1.0

CWE Classification

CWE-648

References

{
    "lastseen": "",
    "description": "Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenticated user with custom permissions limited to task access to view task logs without having task log access. \n\nUsers are recommended to upgrade to Apache Airflow 3.1.7 or later, which resolves this issue.",
    "published": "2026-02-09T10:33:49.649Z",
    "modified": "2026-02-09T17:18:51.694Z",
    "type": "cve",
    "title": "Apache Airflow: Airflow externalLogUrl Permission Bypass",
    "source": "apache",
    "references": "https://github.com/apache/airflow/pull/60412\nhttps://lists.apache.org/thread/gdb7vffhpmrj5hp1j0oj1j13o4vmsq40",
    "id": "CVE-2026-22922",
    "bulletinFamily": "",
    "cwe": [
        "CWE-648"
    ],
    "cvelist": null,
    "sourceData": "Apache Software Foundation Apache Airflow 3.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Apache Airflow",
    "version": "3.1.0",
    "vendor": "Apache Software Foundation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}