Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-62402

API users via `/api/v2/dagReports` could perform Dag code execution in the context of the api-server if the api-server was deployed in the environment where Dag files were available.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.9%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2025-62402
  • Apache » Airflow » Version: 3.0.0
    cpe:2.3:a:apache:airflow:3.0.0
  • Apache » Airflow » Version: 3.0.1
    cpe:2.3:a:apache:airflow:3.0.1
  • Apache » Airflow » Version: 3.0.2
    cpe:2.3:a:apache:airflow:3.0.2
  • Apache » Airflow » Version: 3.0.3
    cpe:2.3:a:apache:airflow:3.0.3
  • Apache » Airflow » Version: 3.0.4
    cpe:2.3:a:apache:airflow:3.0.4
  • Apache » Airflow » Version: 3.0.5
    cpe:2.3:a:apache:airflow:3.0.5
  • Apache » Airflow » Version: 3.0.6
    cpe:2.3:a:apache:airflow:3.0.6
  • Apache » Airflow » Version: 3.1.0
    cpe:2.3:a:apache:airflow:3.1.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved