A vulnerability has been found in Apache Airflow up to 0.4.0 and classified as critical. Affected by this issue is some unknown functionality of the component Git Provider. This manipulation causes channel accessible by non-endpoint.

This vulnerability is registered as CVE-2026-58065. Remote exploitation of the attack is possible. No exploit is available.