CVE-2026-25604

Published: Mar 09, 2026 Last Modified: Mar 10, 2026
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,4
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: low
Integrity: low
Availability: none

Description

AI Translation Available

In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client and not verified against the actual instance URL. 
This allowed to gain access to different instances with potentially different access controls by reusing SAML response from other instances.

You should upgrade to 9.22.0 version of provider if you use AWS Auth Manager.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0001
Percentile
0,0th
Updated

EPSS Score Trend (Last 8 Days)

346

Origin Validation Error

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Other Access Control
Potential Impacts:
Gain Privileges Or Assume Identity Varies By Context
Applicable Platforms
Technologies: Not Technology-Specific, Web Based
View CWE Details
Application

Airflow Providers Amazon by Apache

Product Information
Vendor Apache
Product Airflow Providers Amazon
Version Range Affected
From 8.0.0 (inclusive)
To 9.22.0 (exclusive)
cpe:2.3:a:apache:airflow_providers_amazon:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://www.openwall.com/lists/oss-security/2026/03/09/6
http://www.openwall.com/lists/oss-security/2026/03/09/6
https://github.com/apache/airflow/pull/61368
https://github.com/apache/airflow/pull/61368
https://lists.apache.org/thread/spwwrsmwxod7fpttcd7n7zs46j8…
https://lists.apache.org/thread/spwwrsmwxod7fpttcd7n7zs46j839l77