CVE-2026-48891 | Apache Airflow up to 3.2.x Scheduling Graph /ui/dependencies information disclosure (WID-SEC-2026-2223)
A vulnerability labeled as problematic has been found in Apache Airflow up to 3.2.x. Affected by this vulnerability is an unknown functionality of the file /ui/dependencies of the component Scheduling Graph. Executing a manipulation can lead to information disclosure.
This vulnerability is registered as CVE-2026-48891. It is possible to launch the attack remotely. No exploit is available.
The affected component should be upgraded.VulDB Recent EntriesRead More