A vulnerability described as problematic has been identified in Apache Airflow up to 3.2.1 . Affected by this vulnerability is an unknown functionality. The manipulation results in open redirect. This vulnerability is cataloged as CVE-2026-40961 . The attack may be launched remotely. There is no exploit available. Upgrading the affected component is recommended.