A vulnerability marked as problematic has been reported in Canonical Microceph up to 19.2.3+snapcf306793a3 . Affected is an unknown function of the file /var/snap/microceph of the component Remote-Import API . Performing a manipulation results in relative path traversal. This vulnerability is reported as CVE-2026-10720 . The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.