Apache Airflow: RCE via XCom by DAG Authors (before 3.2.0)
CVE-2026-25917 Published on April 18, 2026

Apache Airflow: API extra-links triggers XCom deserialization/class instantiation (Airflow 3.1.5)
Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue.

Vendor Advisory NVD

Weakness Type

What is a Marshaling, Unmarshaling Vulnerability?

The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

CVE-2026-25917 has been classified to as a Marshaling, Unmarshaling vulnerability or weakness.

Products Associated with CVE-2026-25917

Want to know whenever a new CVE is published for Apache AirFlow? stack.watch will email you.

Apache AirFlow

Affected Versions

Apache Software Foundation Apache Airflow:

Before 3.2.0 is affected.

Apache Airflow: RCE via XCom by DAG Authors (before 3.2.0)CVE-2026-25917 Published on April 18, 2026

Weakness Type

What is a Marshaling, Unmarshaling Vulnerability?

Products Associated with CVE-2026-25917

Affected Versions

Apache Airflow: RCE via XCom by DAG Authors (before 3.2.0)
CVE-2026-25917 Published on April 18, 2026