An authenticated remote code execution vulnerability in Apache Airflow 3.2.x requires immediate patching to prevent unauthorized code execution on the triggerer service.

This is a deserialization flaw in the PATCH /api/v2/xcomEntries/{key} endpoint. An authenticated user with XCom write permissions can inject reserved key names, bypassing validation to trigger remote code execution on the Airflow triggerer.

The CVSS score of 8.8 reflects the high risk of this vulnerability. As an RCE, it allows a malicious user with legitimate but restricted access to escalate their privileges and execute arbitrary commands on the system. This can lead to the theft of workflow secrets, manipulation of data pipelines, and total compromise of the Airflow environment, which is often a central point of control in data infrastructure.

Immediate Action: Upgrade to Apache Airflow version 3.2.2 or later immediately to resolve the deserialization flaw.

Proactive Monitoring: Review API access logs for attempts to call the xcomEntries endpoint with reserved keys and monitor the triggerer service for anomalous child processes or unexpected execution patterns.

Compensating Controls: Restrict access to the Airflow API to only trusted identities and network segments, and implement strict RBAC to ensure only necessary users have XCom write permissions.

Public Exploit Available: false

This vulnerability is a fix-bypass for a previous issue, highlighting the need for a robust and updated Airflow installation. Organizations should prioritize updating to 3.2.2 as soon as possible to mitigate the risk of RCE and protect their data pipeline infrastructure.