CVE-2026-49267 | Apache Airflow up to 3.2.1 SMTP STARTTLS Connection certificate validation

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability was found in Apache Airflow up to 3.2.1. It has been declared as problematic. This impacts an unknown function of the component SMTP STARTTLS Connection Handler. Executing a manipulation can lead to improper certificate validation.

This vulnerability appears as CVE-2026-49267. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2026-49267 | Apache Airflow up to 3.2.1 SMTP STARTTLS Connection certificate validation

Post correlati

CVE-2022-34560 | PHPFox 4.8.9 History cross site scripting

CVE-2024-26902 | Linux Kernel up to 6.6.22/6.7.10 RISCV null pointer dereference (3ede8e94de6b/9f599ba3b9cc/34b567868777)

CVE-2025-5325 | zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 testService special elements used in a template engine

CVE-2025-4736 | PHPGurukul Daily Expense Tracker 1.1 /register.php email sql injection