CVE-2026-32148 | hexpm hex up to 2.4.1 RemoteConverger integrity check (GHSA-hmv9-4mfr-m92v)

A vulnerability labeled as critical has been found in hexpm hex up to 2.4.1. Affected is an unknown function of the component RemoteConverger Module. Executing a manipulation can lead to improper validation of integrity check value.

This vulnerability is registered as CVE-2026-32148. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More