PT-2026-33592 · Apache · Apache Airflow
Kevin Yang
·
Published
2026-04-18
·
Updated
2026-04-21
·
CVE-2026-30898
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apache Airflow (affected versions not specified)
Description
An example of BashOperator in the documentation suggested a method of passing
dag run.conf that allows unsanitized user input to be used. This can lead to a privilege escalation where a UI user can execute code on the worker.Recommendations
Review all DAGs to ensure they have not adopted the incorrect documentation advice regarding the use of
dag run.conf in BashOperator.Fix
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Airflow