CVE-2026-40961 Blast Radius

HIGH • CVSS 7.2A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check, enabling redirect…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-40961.

Start Free Scan →← Back to CVE-2026-40961