Primary

Context

Apache Airflow Proxy Credential Exposure Vulnerability

Vulnerability

Patched

A vulnerability exists in Apache Airflow versions prior to 3.1.6, where proxy fields within a Connection may contain URLs with embedded authentication details. These fields were not automatically masked in log outputs, leading to potential exposure of proxy credentials when such connections are logged. Users are advised to upgrade to version 3.1.6 or later, which addresses this issue.

Impact

Exposed proxy credentials in log files, potentially leading to unauthorized access or misuse of proxy services.

Remediation

Upgrade to Apache Airflow version 3.1.6 or later.

Added: Jan 16, 2026, 11:27 AM

Updated: Jan 16, 2026, 4:27 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

4.8

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

2.5

exploitability

4.8

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache Airflow Proxy Credential Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apache Airflow

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating