Volerion logoVolerion
Volerion logoVolerion

Apache Airflow Samba Provider Path Traversal Vulnerability in GCSToSambaOperator

Vulnerability

A path traversal vulnerability has been identified in the Apache Airflow Samba provider, specifically within the GCSToSambaOperator. This issue arises because the operator concatenates Google Cloud Storage (GCS) object names with the Samba destination path without properly validating the containment of the path. As a result, an object name containing '../' segments could escape the intended destination path, allowing an attacker to write files to arbitrary locations on the Samba target. This vulnerability affects versions of the Apache Airflow Samba provider prior to 4.12.6.

Impact

Exploitation of this vulnerability could lead to unauthorized file writes on the Samba target, potentially overwriting existing files or disrupting services that rely on those files.

Remediation

Users are advised to upgrade to the Apache Airflow Samba provider version 4.12.6 or later, which includes a fix that ensures the resolved destination path remains within the designated destination_path.

Added: Jun 9, 2026, 9:30 AM
Updated: Jun 9, 2026, 9:30 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
0.6
exploitability
5.5
remediation
0.0
relevance
9.4
threat
3.2
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.