A vulnerability, which was classified as critical , was found in Apache APISIX up to 3.16.0 . Affected is an unknown function of the component Configuration Handler . The manipulation results in incorrect authorization. This vulnerability is known as CVE-2026-47339 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.