{"uuid": "e5a23430-65cc-44d5-968f-a893605c30c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42359", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mn7urgkev32g", "content": "Apache Airflow 3.2.0 has a CRITICAL XCom PATCH deserialization bug (CVE-2026-42359). Authenticated users with write rights risk RCE. Upgrade to 3.2.2+ and restrict permissions. https://radar.offseq.com/threat/cve-2026-42359-cwe-502-deserialization-of-untruste-34c6b2b1 #OffSeq #ApacheAirflow #Vuln", "creation_timestamp": "2026-06-01T10:30:27.322316Z"}