CVE-2026-35194 – Apache Flink

CVSS 8.1 IMPORTANT

“Code execution vulnerabilities inside data platforms can turn analytics infrastructure into an attack platform.”

Apache Software Foundation released a patch for a high-severity vulnerability affecting Apache Flink. CVE-2026-35194 has a CVSS score of 8.1, which is High severity.

The vulnerability is tied to improper code generation and execution handling that could allow remote code execution in affected Flink environments. The update strengthens execution safeguards and reduces the risk of attackers abusing data processing workflows to run unauthorized code.

Key Details

Affected Product: Apache Flink
Attack Vector: Network
Attack Complexity: Low
Privileges Required: Low
User Interaction: None
CWE Classification: CWE-94

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-35194 – Apache Flink

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002