4 matches found
1cijferho (=0.1.0), 203-python-project-rc (>=0.2.0 <=0.2.2) +3240 more potentially affected by CVE-2026-10804 via streamlit (>=0.49.0 <=1.9.2)
streamlit PYPI version =0.49.0, =0.2.0, =0.1.0, =0.1.0, =0.1.0, =0.7.1, =0.1.0, =0.0.1, =1.1.0, =2.0.0, =2.0.9 and more Source cves: CVE-2026-10804 Source advisory: SNYK:PYTHON-STREAMLIT-17176399...
PYSEC-0000-CVE-2026-10804
A vulnerability has been found in Streamlit up to 1.53.0. Impacted is an unknown function in the library lib/streamlit/runtime/caching/hashing.py of the component Palette Handler. Such manipulation leads to use of weak hash. Local access is required to approach this attack. The attack requires a...
CVE-2026-10804 Streamlit Palette hashing.py weak hash
A vulnerability has been found in Streamlit up to 1.53.0. Impacted is an unknown function in the library lib/streamlit/runtime/caching/hashing.py of the component Palette Handler. Such manipulation leads to use of weak hash. Local access is required to approach this attack. The attack requires a...
CVE-2026-10804
CVE-2026-10804 affects Streamlit up to 1.53.0, targeting an unknown function in the Palette Handler’s hashing.py (lib/streamlit/runtime/caching/hashing.py). The issue allows use of a weak hash due to the described manipulation, with local access required and a high attack complexity. The exploita...