Strix
26.1K

CVE-2026-30898

HIGHCVSS 8.8/10EPSS 0.77%

Last modified

CVE-2026-30898 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advice.. EPSS estimates a 0.77% chance of exploitation in the next 30 days.

Description

An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advice.

Metrics

CVSS 3.1
8.8/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.77%

51.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
ApacheAirflow< 3.2.0

References

Timeline

Published
Last Modified
Status
Analyzed

Frequently Asked Questions

What is CVE-2026-30898?
An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advice.
How severe is CVE-2026-30898?
CVE-2026-30898 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 0.77% probability of exploitation in the next 30 days.
How do I fix CVE-2026-30898?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2026-30898?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST