CVE-2026-50203
Summary: CVE-2026-50203 describes a path traversal in the Apache Airflow SFTP provider (SFTPHook.retrieve_directory and SFTPOperator(operation=get)) that can cause files to be written outside the configured local destination when downloading directories from a malicious/untrusted remote SFTP serv...