A vulnerability described as critical has been identified in miguelgrinberg Flask-HTTPAuth up to 4.8.0 on Flask. The affected element is an unknown function. Such manipulation leads to improper authentication. This vulnerability is referenced as CVE-2026-34531 . It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.