Apache Airflow Common Sql Provider
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Apache Airflow Common Sql Provider.
By the Year
In 2026 there have been 0 vulnerabilities in Apache Airflow Common Sql Provider. Last year, in 2025 Airflow Common Sql Provider had 1 security vulnerability published. Right now, Airflow Common Sql Provider is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
It may take a day or so for new Airflow Common Sql Provider vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apache Airflow Common Sql Provider Security Vulnerabilities
Apache Airflow SQL Provider <1.24.1 SQL Injection via SQLTableCheckOperator
CVE-2025-30473
- April 07, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Airflow Common SQL Provider. When using the partition clause in SQLTableCheckOperator as parameter (which was a recommended pattern), Authenticated UI User could inject arbitrary SQL command when triggering DAG exposing partition_clause to the user. This allowed the DAG Triggering user to escalate privileges to execute those arbitrary commands which they normally would not have. This issue affects Apache Airflow Common SQL Provider: before 1.24.1. Users are recommended to upgrade to version 1.24.1, which fixes the issue.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Apache Airflow Common Sql Provider or by Apache? Click the Watch button to subscribe.
