Remote code execution vulnerability CVE-2026-20045 is considered critical by the vendor, as the US cyber agency adds the vulnerability to its KEV catalogue.