A vulnerability marked as critical has been reported in Distribution up to 3.1.0 . The affected element is an unknown function of the file /v2/manifests/ of the component Configuration Handler . The manipulation leads to incorrect authorization. This vulnerability is documented as CVE-2026-41888 . The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.