Filtered by vendor Apache
Subscriptions
Filtered by product Airflow Fab Provider
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-46745 | 1 Apache | 1 Airflow Fab Provider | 2026-05-27 | 5.3 Medium |
| Apache Airflow FAB Auth Manager contains an LDAP filter injection vulnerability (CWE-90) that allows unauthenticated attackers to exfiltrate directory data or bypass authentication. Upgrade to apache-airflow-providers-fab 3.6.4 or later. If immediate upgrade is not possible, disable LDAP authentication until the provider can be updated. | ||||
Page 1 of 1.