CVE-2026-49297
Received Received - Intake

Path Traversal in Apache Airflow Google Provider

Vulnerability report for CVE-2026-49297, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-06

Last updated on: 2026-07-06

Assigner: Apache Software Foundation

Description

Apache Airflow's Google provider operators `GCSToSFTPOperator` and `GCSTimeSpanFileTransformOperator` joined GCS object names returned by the bucket listing API directly to a destination filesystem path without normalisation or containment check. A user with write access to the source GCS bucket (typically a different trust principal than the DAG author β€” partner uploads, ingest-only service accounts, public-data buckets) could create an object whose name contains `..` segments and cause the DAG run to write the downloaded blob outside the configured destination (the SFTP `destination_path` for `GCSToSFTPOperator`; the worker-local temp directory for `GCSTimeSpanFileTransformOperator`), enabling overwrite of arbitrary files on the SFTP server or the worker host. Affects deployments that ingest from buckets writable by less-trusted principals. Users are advised to upgrade to `apache-airflow-providers-google` 22.2.1 or later.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-06
Last Modified
2026-07-06
Generated
2026-07-06
AI Q&A
2026-07-06
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
apache apache_airflow_providers_google 22.2.1

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-49297 is a security vulnerability in Apache Airflow's Google Cloud Storage operators, specifically GCSToSFTPOperator and GCSTimeSpanFileTransformOperator. These operators join Google Cloud Storage (GCS) object names directly to destination filesystem paths without proper normalization or containment checks.

Because of this, a user with write access to the source GCS bucket can create object names containing '..' segments or absolute path prefixes that cause the operators to write files outside the intended destination directories. This path traversal can lead to overwriting arbitrary files on the SFTP server or the worker host.

The vulnerability affects deployments where the GCS bucket is writable by less-trusted principals, such as partner uploads or ingest-only service accounts. The issue was fixed by adding validation to normalize and resolve destination paths, ensuring they remain within the configured base directory, and raising errors if a path escapes containment.

Impact Analysis

This vulnerability can allow an attacker with write access to the source GCS bucket to perform path traversal attacks by crafting malicious object names. As a result, the attacker could cause the Airflow DAG run to write files outside the intended destination directories.

  • Overwrite arbitrary files on the SFTP server, potentially compromising data or system integrity.
  • Overwrite files on the worker host, which could lead to unauthorized code execution, data corruption, or denial of service.

Overall, this could lead to unauthorized modification of files, system compromise, and disruption of workflows in affected Airflow deployments.

Detection Guidance

This vulnerability can be detected by monitoring for error messages raised by the affected operators when they encounter path traversal attempts. Specifically, the operators GCSToSFTPOperator and GCSTimeSpanFileTransformOperator now raise a ValueError if a GCS object name attempts to escape the configured destination directory after normalization.

To detect exploitation attempts, you can check Airflow logs for ValueError exceptions mentioning path traversal or suspicious object names containing '..' segments.

Additionally, you can audit the GCS bucket contents for object names containing '..' or absolute path segments that could be used to exploit this vulnerability.

  • Use Airflow task logs to grep for ValueError related to path traversal, e.g., `grep -i 'ValueError' /path/to/airflow/logs/*`
  • List GCS bucket objects with suspicious names using gsutil: `gsutil ls gs://your-bucket/** | grep '\.\.'`
  • Check for unexpected file writes outside the intended destination directories on the SFTP server or worker host by monitoring filesystem changes or using tools like `find` to locate recently modified files outside expected paths.
Mitigation Strategies

The primary and recommended mitigation is to upgrade the apache-airflow-providers-google package to version 22.2.1 or later, which includes the fix that normalizes and validates destination paths to prevent path traversal.

Until the upgrade can be applied, restrict write access to the source GCS buckets to trusted principals only, preventing untrusted users from uploading objects with malicious names.

Review and audit your GCS buckets for any objects with suspicious names containing '..' segments and remove or rename them.

Monitor Airflow logs for ValueError exceptions related to path traversal attempts to detect exploitation attempts.

Compliance Impact

This vulnerability allows an attacker with write access to a Google Cloud Storage bucket to perform path traversal attacks, potentially overwriting arbitrary files on the SFTP server or worker host. Such unauthorized file overwrites could lead to data integrity and confidentiality issues.

While the provided information does not explicitly mention compliance with standards like GDPR or HIPAA, the ability to overwrite arbitrary files could result in unauthorized data access or modification, which may violate data protection and security requirements mandated by these regulations.

Therefore, organizations using affected versions of Apache Airflow's Google provider operators and ingesting data from less-trusted principals should upgrade to version 22.2.1 or later to mitigate risks that could impact compliance with such standards.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-49297. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart