CVE-2026-32794

# PoC Concept: Demonstrating the lack of certificate validation # This script simulates the behavior of the vulnerable client connecting to a malicious endpoint. import requests import urllib3 # Disable SSL warnings (simulating the vulnerable behavior) urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning) def vulnerable_connection(url): try: # Vulnerable code: verify=False (Certificate validation is skipped) response = requests.get(url, verify=False, timeout=5) print(f"[+] Connection established to {url}") print(f"[+] Response Status: {response.status_code}") print("[!] Sensitive data might be intercepted in this connection.") return response.text except Exception as e: print(f"[-] Connection failed: {e}") # Simulate a Man-in-the-Middle endpoint with a self-signed certificate # In a real attack scenario, the attacker would intercept traffic and present their own cert. malicious_url = "https://192.168.1.100:443/api/2.1/jobs/list" print("[*] Attempting to connect without validating certificate...") vulnerable_connection(malicious_url)

{"cve": {"id": "CVE-2026-32794", "sourceIdentifier": "[email protected]", "published": "2026-03-30T22:16:18.760", "lastModified": "2026-04-02T20:26:24.757", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Certificate Validation vulnerability in Apache Airflow Provider for Databricks. Provider code did not validate certificates for connections to Databricks back-end which could result in a man-of-a-middle attack that traffic is intercepted and manipulated or credentials exfiltrated w/o notice.\n\nThis issue affects Apache Airflow Provider for Databricks: from 1.10.0 before 1.12.0.\n\nUsers are recommended to upgrade to version 1.12.0, which fixes the issue."}, {"lang": "es", "value": "Vulnerabilidad de Validación de Certificado Incorrecta en el Proveedor de Apache Airflow para Databricks. El código del proveedor no validaba los certificados para las conexiones al *back-end* de Databricks, lo que podría dar lugar a un ataque de intermediario en el que el tráfico es interceptado y manipulado o las credenciales son exfiltradas sin previo aviso.\n\nEste problema afecta al Proveedor de Apache Airflow para Databricks: desde la versión 1.10.0 hasta antes de la 1.12.0.\n\nSe recomienda a los usuarios actualizar a la versión 1.12.0, que corrige el problema."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N", "baseScore": 4.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.2, "impactScore": 2.5}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-295"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:apache:airflow_providers_databricks:*:*:*:*:*:*:*:*", "versionStartIncluding": "1.10.0", "versionEndExcluding": "1.12.0", "matchCriteriaId": "89CF59C2-CDC8-4C1A-8FD8-BCAA850355ED"}]}]}], "references": [{"url": "https://github.com/apache/airflow/pull/63704", "source": "[email protected]", "tags": ["Issue Tracking", "Patch"]}, {"url": "https://lists.apache.org/thread/hn17yqsgsdtl81llvhf80rkp53hnz5nb", "source": "[email protected]", "tags": ["Mailing List", "Vendor Advisory"]}, {"url": "http://www.openwall.com/lists/oss-security/2026/03/30/9", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"]}]}}