The SentinelOne Annual Threat Report - A Defenders Guide from the FrontlinesThe SentinelOne Annual Threat ReportGet the Report
Experiencing a Breach?Blog
Get StartedContact Us
SentinelOne
  • Platform
    Platform Overview
    • Singularity Platform
      Welcome to Integrated Enterprise Security
    • AI for Security
      Leading the Way in AI-Powered Security Solutions
    • Securing AI
      Accelerate AI Adoption with Secure AI Tools, Apps, and Agents.
    • How It Works
      The Singularity XDR Difference
    • Singularity Marketplace
      One-Click Integrations to Unlock the Power of XDR
    • Pricing & Packaging
      Comparisons and Guidance at a Glance
    Data & AI
    • Purple AI
      Accelerate SecOps with Generative AI
    • Singularity Hyperautomation
      Easily Automate Security Processes
    • AI-SIEM
      The AI SIEM for the Autonomous SOC
    • Singularity Data Lake
      AI-Powered, Unified Data Lake
    • Singularity Data Lake for Log Analytics
      Seamlessly Ingest Data from On-Prem, Cloud or Hybrid Environments
    Endpoint Security
    • Singularity Endpoint
      Autonomous Prevention, Detection, and Response
    • Singularity XDR
      Native & Open Protection, Detection, and Response
    • Singularity RemoteOps Forensics
      Orchestrate Forensics at Scale
    • Singularity Threat Intelligence
      Comprehensive Adversary Intelligence
    • Singularity Vulnerability Management
      Application & OS Vulnerability Management
    • Singularity Identity
      Identity Threat Detection and Response
    Cloud Security
    • Singularity Cloud Security
      Block Attacks with an AI-Powered CNAPP
    • Singularity Cloud Native Security
      Secure Cloud and Development Resources
    • Singularity Cloud Workload Security
      Real-Time Cloud Workload Protection Platform
    • Singularity Cloud Data Security
      AI-Powered Threat Detection for Cloud Storage
    • Singularity Cloud Security Posture Management
      Detect and Remediate Cloud Misconfigurations
    Securing AI
    • Prompt Security
      Secure AI Tools Across Your Enterprise
  • Why SentinelOne?
    Why SentinelOne?
    • Why SentinelOne?
      Cybersecurity Built for What’s Next
    • Our Customers
      Trusted by the World’s Leading Enterprises
    • Industry Recognition
      Tested and Proven by the Experts
    • About Us
      The Industry Leader in Autonomous Cybersecurity
    Compare SentinelOne
    • Arctic Wolf
    • Broadcom
    • CrowdStrike
    • Cybereason
    • Microsoft
    • Palo Alto Networks
    • Sophos
    • Splunk
    • Trellix
    • Trend Micro
    • Wiz
    Verticals
    • Energy
    • Federal Government
    • Finance
    • Healthcare
    • Higher Education
    • K-12 Education
    • Manufacturing
    • Retail
    • State and Local Government
  • Services
    Managed Services
    • Managed Services Overview
      Wayfinder Threat Detection & Response
    • Threat Hunting
      World-Class Expertise and Threat Intelligence
    • Managed Detection & Response
      24/7/365 Expert MDR Across Your Entire Environment
    • Incident Readiness & Response
      DFIR, Breach Readiness, & Compromise Assessments
    Support, Deployment, & Health
    • Technical Account Management
      Customer Success with Personalized Service
    • SentinelOne GO
      Guided Onboarding & Deployment Advisory
    • SentinelOne University
      Live and On-Demand Training
    • Services Overview
      Comprehensive Solutions for Seamless Security Operations
    • SentinelOne Community
      Community Login
  • Partners
    Our Network
    • MSSP Partners
      Succeed Faster with SentinelOne
    • Singularity Marketplace
      Extend the Power of S1 Technology
    • Cyber Risk Partners
      Enlist Pro Response and Advisory Teams
    • Technology Alliances
      Integrated, Enterprise-Scale Solutions
    • SentinelOne for AWS
      Hosted in AWS Regions Around the World
    • Channel Partners
      Deliver the Right Solutions, Together
    • SentinelOne for Google Cloud
      Unified, Autonomous Security Giving Defenders the Advantage at Global Scale
    • Partner Locator
      Your Go-to Source for Our Top Partners in Your Region
    Partner Portal→
  • Resources
    Resource Center
    • Case Studies
    • Data Sheets
    • eBooks
    • Reports
    • Videos
    • Webinars
    • Whitepapers
    • Events
    View All Resources→
    Blog
    • Feature Spotlight
    • For CISO/CIO
    • From the Front Lines
    • Identity
    • Cloud
    • macOS
    • SentinelOne Blog
    Blog→
    Tech Resources
    • SentinelLABS
    • Ransomware Anthology
    • Cybersecurity 101
  • About
    About SentinelOne
    • About SentinelOne
      The Industry Leader in Cybersecurity
    • Investor Relations
      Financial Information & Events
    • SentinelLABS
      Threat Research for the Modern Threat Hunter
    • Careers
      The Latest Job Opportunities
    • Press & News
      Company Announcements
    • Cybersecurity Blog
      The Latest Cybersecurity Threats, News, & More
    • FAQ
      Get Answers to Our Most Frequently Asked Questions
    • DataSet
      The Live Data Platform
    • S Foundation
      Securing a Safer Future for All
    • S Ventures
      Investing in the Next Generation of Security, Data and AI
  • Pricing
Get StartedContact Us
CVE Vulnerability Database
Vulnerability Database/CVE-2026-28779

CVE-2026-28779: Apache Airflow Auth Bypass Vulnerability

CVE-2026-28779 is an authentication bypass flaw in Apache Airflow versions 3.1.0 through 3.1.7 that exposes session tokens to co-hosted applications. This article covers technical details, affected versions, and mitigation.

Published: March 20, 2026

CVE-2026-28779 Overview

A session hijacking vulnerability has been identified in Apache Airflow versions 3.1.0 through 3.1.7. The vulnerability stems from improper cookie path configuration where the session token (_token) is set to path=/ regardless of the configured [webserver] base_url or [api] base_url settings. This misconfiguration allows any application co-hosted under the same domain to capture valid Airflow session tokens from HTTP request headers, enabling full session takeover without directly attacking the Airflow application itself.

Critical Impact

Attackers can hijack authenticated Airflow sessions by capturing session tokens through co-hosted applications on the same domain, potentially gaining full administrative access to workflow orchestration systems.

Affected Products

  • Apache Airflow versions 3.1.0 through 3.1.7

Discovery Timeline

  • 2026-03-17 - CVE-2026-28779 published to NVD
  • 2026-03-17 - Last updated in NVD database

Technical Details for CVE-2026-28779

Vulnerability Analysis

This vulnerability is classified under CWE-668 (Exposure of Resource to Wrong Sphere), representing an improper resource exposure flaw in Apache Airflow's session management implementation. The core issue lies in the webserver's cookie configuration logic that fails to respect the administrator-defined base_url settings when setting the session token cookie path.

When Airflow administrators configure a specific base URL path for their deployment (for example, /airflow/ instead of the root path), they typically expect session cookies to be scoped to that specific path. However, due to this vulnerability, the session token cookie is always set with path=/, making it accessible to any application hosted on the same domain.

The impact of this vulnerability is significant in multi-tenant or shared hosting environments where multiple applications run under the same domain. An attacker controlling or compromising any co-hosted application can passively collect Airflow session tokens transmitted in HTTP headers, leading to complete session takeover and unauthorized access to the Airflow web interface and API.

Root Cause

The root cause is a hardcoded cookie path value in the session management component. Instead of dynamically setting the cookie path based on the configured [webserver] base_url or [api] base_url parameters, the implementation unconditionally sets path=/ for the _token session cookie. This design flaw violates the principle of least privilege for cookie scope and creates an unnecessary exposure surface in shared hosting environments.

Attack Vector

The attack vector is network-based and requires no authentication or user interaction. An attacker needs to have control over or access to any application running on the same domain as the Airflow instance. The attack flow involves:

  1. The attacker deploys or compromises a co-hosted application on the same domain as Apache Airflow
  2. Legitimate users authenticate to Airflow, receiving session tokens with overly permissive path=/ scope
  3. When users browse to any path on the domain (including attacker-controlled applications), the browser automatically includes the Airflow session token in request headers
  4. The attacker's application captures these session tokens
  5. The attacker uses stolen tokens to impersonate authenticated users and gain full access to Airflow

The vulnerability does not require any direct interaction with the Airflow application itself, making it particularly dangerous in environments where domain isolation between applications is not enforced.

Detection Methods for CVE-2026-28779

Indicators of Compromise

  • Unusual session activity from IP addresses not typically associated with legitimate Airflow users
  • Multiple concurrent sessions using the same session token from different geographic locations
  • Access to Airflow administrative functions from unexpected network segments
  • Session tokens appearing in access logs of co-hosted applications on the same domain

Detection Strategies

  • Implement monitoring for session token reuse across different client IP addresses or user agents
  • Deploy web application firewalls (WAF) with rules to detect session token leakage patterns
  • Enable verbose logging on the Airflow webserver to track authentication events and session creation
  • Monitor for anomalous API access patterns that may indicate hijacked sessions

Monitoring Recommendations

  • Configure alerts for authentication anomalies such as rapid session creation or concurrent logins
  • Implement network segmentation monitoring to detect cross-application token exposure
  • Review access logs of all co-hosted applications for presence of Airflow session tokens
  • Establish baseline user behavior patterns to identify potential session hijacking incidents

How to Mitigate CVE-2026-28779

Immediate Actions Required

  • Upgrade Apache Airflow to version 3.1.8 or later immediately
  • Review and audit all applications co-hosted on the same domain as Airflow deployments
  • Invalidate all existing session tokens by restarting the Airflow webserver and forcing re-authentication
  • Consider implementing additional session binding mechanisms such as IP address verification
  • Isolate Airflow on a dedicated subdomain if upgrade is not immediately possible

Patch Information

Apache has released version 3.1.8 which resolves this session token exposure vulnerability. The fix ensures that the session cookie path is correctly set based on the configured [webserver] base_url and [api] base_url parameters. Details of the patch can be found in the Apache Airflow GitHub Pull Request and the Apache Mailing List Thread.

Workarounds

  • Deploy Airflow on a dedicated subdomain (e.g., airflow.example.com) to prevent cookie sharing with other applications
  • Implement a reverse proxy configuration that strips or validates session cookies at the domain boundary
  • Enable additional authentication layers such as mutual TLS or IP-based access restrictions
  • Use network segmentation to isolate Airflow from other applications at the infrastructure level
bash
# Example: Configure Airflow on a dedicated subdomain via reverse proxy
# nginx configuration snippet for domain isolation
server {
    server_name airflow.example.com;
    
    location / {
        proxy_pass http://airflow-backend:8080;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_cookie_path / "/; SameSite=Strict; Secure";
    }
}

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

  • Vulnerability Details
  • TypeAuth Bypass
  • Vendor/TechApache Airflow
  • SeverityHIGH
  • CVSS Score7.5
  • EPSS Probability0.07%
  • Known ExploitedNo
  • CVSS Vector
  • CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Impact Assessment
  • ConfidentialityLow
  • IntegrityNone
  • AvailabilityNone
  • CWE References
  • CWE-668
  • Technical References
  • Openwall OSS-Security Post
  • Vendor Resources
  • GitHub Pull Request
  • Apache Mailing List Thread
  • Related CVEs
  • CVE-2026-30911: Apache Airflow Auth Bypass Vulnerability
  • CVE-2026-26929: Apache Airflow Auth Bypass Vulnerability
  • CVE-2026-25604: Apache Airflow Amazon Auth Bypass Flaw
  • CVE-2026-22922: Apache Airflow Auth Bypass Vulnerability
Experience the World’s Most Advanced Cybersecurity Platform

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform can protect your organization now and into the future.

Try SentinelOne
  • Get Started
  • Get a Demo
  • Product Tour
  • Why SentinelOne
  • Pricing & Packaging
  • FAQ
  • Contact
  • Contact Us
  • Customer Support
  • SentinelOne Status
  • Language
  • Platform
  • Singularity Platform
  • Singularity Endpoint
  • Singularity Cloud
  • Singularity AI-SIEM
  • Singularity Identity
  • Singularity Marketplace
  • Purple AI
  • Services
  • Wayfinder TDR
  • SentinelOne GO
  • Technical Account Management
  • Support Services
  • Verticals
  • Energy
  • Federal Government
  • Finance
  • Healthcare
  • Higher Education
  • K-12 Education
  • Manufacturing
  • Retail
  • State and Local Government
  • Cybersecurity for SMB
  • Resources
  • Blog
  • Labs
  • Case Studies
  • Videos
  • Product Tours
  • Events
  • Cybersecurity 101
  • eBooks
  • Webinars
  • Whitepapers
  • Press
  • News
  • Ransomware Anthology
  • Company
  • About Us
  • Our Customers
  • Careers
  • Partners
  • Legal & Compliance
  • Security & Compliance
  • Investor Relations
  • S Foundation
  • S Ventures

©2026 SentinelOne, All Rights Reserved.

Privacy Notice Terms of Use

English