VYPR
Medium severity5.4NVD Advisory· Published Apr 24, 2026· Updated Apr 28, 2026

CVE-2026-41425

CVE-2026-41425

Description

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starlette_client.OAuth. This vulnerability is fixed in 1.6.11.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
authlibPyPI
< 1.6.111.6.11

Affected products

12

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.