CVE-2025-57735 | Apache Airflow up to 3.1.x JWT Token session expiration

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability categorized as critical has been discovered in Apache Airflow up to 3.1.x. This affects an unknown function of the component JWT Token Handler. Executing a manipulation can lead to session expiration.

This vulnerability appears as CVE-2025-57735. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2025-57735 | Apache Airflow up to 3.1.x JWT Token session expiration

Post correlati

CVE-2024-26215 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 DHCP Server resource consumption

CVE-2024-34663 | Samsung Devices libSEF.quram.so integer overflow to buffer overflow

CVE-2022-49400 | Linux Kernel up to 5.15.45/5.17.13/5.18.2 drivers/md/raid10.c null pointer dereference

CVE-2026-24708 | OpenStack Nova up to 30.2.1/31.2.0/32.1.0 qemu-img stack-based overflow