A vulnerability classified as problematic was found in Ivanti Xtraction up to 2026.2.0. The impacted element is an unknown function. Such manipulation leads to path traversal.

This vulnerability is listed as CVE-2026-14903. The attack may be performed from remote. There is no available exploit.