A vulnerability identified as problematic has been detected in HCL Digital Experience & DX Compose 9.5 . This issue affects some unknown processing of the component Header Handler . The manipulation of the argument Host leads to open redirect. This vulnerability is uniquely identified as CVE-2026-21826 . The attack is possible to be carried out remotely. No exploit exists.