A vulnerability, which was classified as critical , has been found in Gleam up to 1.16.x . Affected is an unknown function of the file build/dev/docs/ . The manipulation of the argument documentation.pages[].path leads to path traversal. This vulnerability is traded as CVE-2026-32685 . An attack has to be approached locally. There is no exploit available. It is advisable to upgrade the affected component.