CVE-2026-42795 Blast Radius

MEDIUM • CVSS 5.1Symlink following vulnerability in Gleam's Hex package export allows files outside the project root to be embedded in the generated package tarball.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-42795.