CVE-2026-32690

Gravedad:

Pendiente de análisis

Tipo:

No Disponible / Otro tipo

Fecha de publicación:

18/04/2026

Última modificación:

18/04/2026

Descripción

*** Pendiente de traducción *** Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the secrets stored as nested fields were not masked.<br /> <br /> If you do not store variables with sensitive values in JSON form, you are not affected. Otherwise please upgrade to Apache Airflow 3.2.0 that has the fix implemented

Impacto

Referencias a soluciones, herramientas e información

https://github.com/apache/airflow/pull/63480
https://lists.apache.org/thread/7rnzxofntcznqxnhsmjvvlvygwph7rn5
http://www.openwall.com/lists/oss-security/2026/04/17/6