Apache · Apache Airflow · CVE-2026-49298
**Name of the Vulnerable Software and Affected Versions**
Apache Airflow versions prior to 3.2.2
**Description**
A bug in the `KubernetesExecutor` causes JSON Web Tokens (JWT), used by worker pods to authenticate against the Execution API, to be passed to the worker container as command-line arguments. These tokens are visible in the pod specification. An authenticated UI or API user with read-only Kubernetes access to the cluster, such as the `pods/get` permission in the Airflow namespace, can retrieve the JWT via the `kubectl describe pod` output. This allows the user to call state-mutating Execution API endpoints to trigger DAG runs, clear runs, or read and write Variables, Connections, and XComs, effectively impersonating a running task.
**Recommendations**
Upgrade to version 3.2.2 or later.