A vulnerability labeled as problematic has been found in Kareadita Kavita up to 0.8.x . This affects an unknown part of the file /api/Download/volume-size . Such manipulation leads to authorization bypass. This vulnerability is traded as CVE-2026-44776 . The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.