A vulnerability classified as critical was found in Black Lantern Security BBOT up to 2.8.5 . The impacted element is an unknown function of the component Postman API . Executing a manipulation can lead to path traversal. This vulnerability appears as CVE-2026-12568 . The attack may be performed from remote. There is no available exploit. It is advisable to implement a patch to correct this issue.