CVE-2026-25604
Apache Airflow AWS Auth Manager has Host Header Injection Leading to SAML Authentication Bypass
5.4
MEDIUM
CVSS 3.1
EPSS 0.02%
描述
In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client and not verified against the actual instance URL. This allowed to gain access to different instances with potentially different access controls by reusing SAML response from other instances. You should upgrade to 9.22.0 version of provider if you use AWS Auth Manager.
如何修補 CVE-2026-25604
要修補 CVE-2026-25604,請將受影響套件升級到下列已修補版本。
- —升級至 9.22.0 或更新版本
CVE-2026-25604 正在被利用嗎?
低 — EPSS 為 0.0%,目前沒有觀察到大規模利用活動。
受影響套件(1)
- from 0, < 9.22.0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.4 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |