Skip to content

GHSA lookup

GHSA-2943-9672-R45W

Pruva has a verified reproduction for GHSA-2943-9672-R45W: Apache Airflow <3.3.0 allows deserialization of attacker-controlled class paths in BaseSerialization.deserialize(), enabling DAG authors to trigger RCE in the Scheduler/API Server via malicious serialized DAGs.. The canonical evidence record is REPRO-2026-00271.

REPRO

REPRO-2026-00271

Package

apache/airflow · PyPI

Severity

CRITICAL

Status

published