A vulnerability was found in Apache Airflow Providers Elasticsearch up to 6.5.2 . It has been rated as problematic . This affects an unknown function of the component Elasticsearch task-log Handler . The manipulation leads to sensitive information in log files. This vulnerability is traded as CVE-2026-41018 . It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.