CVE-2026-25917 | Apache Airflow 3.1.5 API deserialization

A vulnerability identified as critical has been detected in Apache Airflow 3.1.5. This impacts an unknown function of the component API. Performing a manipulation results in deserialization.

This vulnerability is cataloged as CVE-2026-25917. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More