VDB

CVE-2026-22922

CVE-2026-22922 PUBLISHED

Apache Airflow: Airflow externalLogUrl Permission Bypass

EPSS 0.04% · 11.4th percentile

Risk Scores

EPSS Score
0.04%
11.4th percentile

Affected Products

VendorProductVersions
Bitnamiairflow3.1.0, 3.1.0, 3.1.0
Bitnamiairflow3.1.0

Timeline

  • Jan 13, 2026 Fix PR Merged
  • Feb 9, 2026 CVE Published
  • Feb 9, 2026 EPSS Score
  • Feb 9, 2026 PoC Published
  • Feb 9, 2026 PoC Published
  • Feb 11, 2026 EPSS Score
  • Feb 13, 2026 EPSS Score
  • Feb 14, 2026 CVE Updated
  • Feb 15, 2026 EPSS Score
  • Feb 17, 2026 EPSS Score
  • Feb 19, 2026 EPSS Score
  • Feb 21, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›