Apache Apache-airflow-providers-keycloak
1 CVEs affecting Apache Apache-airflow-providers-keycloak. Latest disclosed: 2026-04-18. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-40948 | Medium | 5.4 | 2026-04-18 | The Keycloak authentication manager in `apache-airflow-providers-keycloak` did not generate or validate the OAuth 2.0 `state` parameter on the login / login-ca… |