A vulnerability classified as critical has been found in zephyrproject zephyr up to 4.4.x . Affected by this vulnerability is the function on_url of the file /net/lib/http of the component FS Handler . This manipulation causes path traversal. This vulnerability is tracked as CVE-2026-8023 . The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.