A vulnerability, which was classified as critical , was found in lostisland faraday up to 2.14.2 . This vulnerability affects the function build_exclusive_url . Such manipulation leads to server-side request forgery. This vulnerability is referenced as CVE-2026-33637 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.