CVE-2026-46724 — The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbitrary locations on the server file system — CVE Database · The Intelligence Room