A vulnerability marked as critical has been reported in Fission up to 1.24.x . This vulnerability affects unknown code of the file pkg/utils/zip.go . The manipulation leads to path traversal. This vulnerability is documented as CVE-2026-50567 . The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.