CVE-2025-69219— Apache Airflow Providers Http: Unsafe Pickle Deserialization in apache-airflow-providers-http leading to RCE via HttpOperator
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-69219
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Airflow Providers Http: Unsafe Pickle Deserialization in apache-airflow-providers-http leading to RCE via HttpOperator
Source: NVD (National Vulnerability Database)
Vulnerability Description
A user with access to the DB could craft a database entry that would result in executing code on Triggerer - which gives anyone who have access to DB the same permissions as Dag Author. Since direct DB access is not usual and recommended for Airflow, the likelihood of it making any damage is low. You should upgrade to version 6.0.0 of the provider to avoid even that risk.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
动态管理代码资源的控制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apache Airflow 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apache Airflow是美国阿帕奇(Apache)基金会的一套具有创建、管理和监控工作流程功能的开源平台。该平台具有可扩展和动态监控等特点。 Apache Airflow存在安全漏洞,该漏洞源于拥有数据库访问权限的用户可制作数据库条目,可能导致在Triggerer上执行代码,从而获得与Dag Author相同的权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Apache Software Foundation | Apache Airflow Providers Http | 5.1.0 ~ 6.0.0 | - |
II. Public POCs for CVE-2025-69219
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-69219
请登录查看更多情报信息。
Same Patch Batch · Apache Software Foundation · 2026-03-09 · 4 CVEs total
| CVE-2026-24015 | Apache IoTDB: Insecure Default Configuration Vulnerability | |
| CVE-2026-24713 | Apache IoTDB: JEXL Expression Injection Vulnerability | |
| CVE-2026-25604 | Apache Airflow AWS Auth Manager - Host Header Injection Leading to SAML Authentication Byp |
IV. Related Vulnerabilities
Same vendor: Apache Software Foundation
- CVE-2026-39816
Apache NiFi: Missing Execute Code Required Permission on Tin - CVE-2026-25199
Apache CloudStack: Proxmox Extension Allows Unauthorized Cro - CVE-2026-25077
Apache CloudStack: Unauthenticated Command Injection in Dire - CVE-2025-69233
Apache CloudStack: Domain/account resources limits not honor - CVE-2025-66467
Apache CloudStack: MinIO policy remains intact on bucket del
Same weakness: CWE-913
- CVE-2026-34156
NocoBase Affected by Sandbox Escape to RCE via console._stdo - CVE-2026-33286
Graphiti Affected by Arbitrary Method Execution via Unvalida - CVE-2026-25049
n8n Has an Expression Escape Vulnerability Leading to RCE - CVE-2026-1770
Improper Control of Dynamically-Managed Code Resources in Cr - CVE-2025-68613
n8n Vulnerable to Remote Code Execution via Expression Injec
V. Comments for CVE-2025-69219
No comments yet