A vulnerability classified as critical has been found in mem0ai mem0 up to 0.2.8 . Affected by this issue is some unknown functionality of the file /configure . The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2026-49948 . The attack is possible to be carried out remotely. No exploit exists. Applying a patch is the recommended action to fix this issue.