CVE-2026-27173 | Apache Airflow CNCF Kubernetes Provider up to 10.16.x JWT Token file information disclosure

Inserito da Angelo Barbosa | Mag 19, 2026 | CVE

A vulnerability was found in Apache Airflow CNCF Kubernetes Provider up to 10.16.x. It has been declared as problematic. This issue affects some unknown processing of the component JWT Token Handler. Executing a manipulation can lead to file and directory information exposure.

This vulnerability is registered as CVE-2026-27173. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-27173 | Apache Airflow CNCF Kubernetes Provider up to 10.16.x JWT Token file information disclosure

Post correlati

CVE-2024-56659 | Linux Kernel up to 6.12.5 lapb LAPB_HEADER_LEN buffer overflow

CVE-2025-36563 | Alfasado PowerCMS cross site scripting

CVE-2024-6300 | Conduit up to 0.7.x String cleanup

CVE-2024-54451 | Kurmi Provisioning Suite up to 7.9.0.34/7.10.0.18/7.11.0.15 graphicCustomization.do COMPONENT_fields cross site scripting