A vulnerability categorized as problematic has been discovered in DeepMyst Mysti up to 0.4.0. The affected element is the function initProjectMemory of the file src/managers/MemoryManager.ts of the component Per-Project Auto-Memory Handler. Such manipulation of the argument workspacePath leads to exposure of resource.

This vulnerability is listed as CVE-2026-14611. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.