A vulnerability labeled as critical has been found in Apache Kvrocks up to 2.15.0 . This affects an unknown function of the component Filename Handler . The manipulation results in path traversal. This vulnerability is identified as CVE-2026-45188 . The attack can only be performed from the local network. There is not any exploit available. The affected component should be upgraded.