A vulnerability categorized as problematic has been discovered in Outline up to 1.6.x . Affected by this issue is some unknown functionality of the component shares.create API . Executing a manipulation can lead to incorrect authorization. This vulnerability is tracked as CVE-2026-43889 . The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.