A vulnerability, which was classified as critical, was found in Apache Gravitino up to 1.2.0. Affected is an unknown function of the component JobManager. The manipulation results in server-side request forgery.
This vulnerability is cataloged as CVE-2026-49876. The attack may be launched remotely. There is no exploit available.
You should upgrade the affected component.