CVE-2025-62503 | Apache Airflow up to 3.1.0 API /api/v2/dagReports unnecessary privileges

A vulnerability has been found in Apache Airflow up to 3.1.0 and classified as critical. Affected is an unknown function of the file /api/v2/dagReports of the component API. This manipulation causes execution with unnecessary privileges.

This vulnerability is handled as CVE-2025-62503. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More