A vulnerability classified as critical has been found in Yandex Database . Affected is an unknown function of the component Group Membership Handler . Performing a manipulation results in improper handling of insufficient permissions or privileges. This vulnerability is known as CVE-2026-10549 . Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.