CVE-2025-62402 – Apache Airflow: Airflow 3 API: /api/v2/dagReports executes DAG Python in API

CVE ID : CVE-2025-62402

Published : Oct. 30, 2025, 10:15 a.m. | 1 hour, 10 minutes ago

Description : API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the environment where Dag files were available.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…