Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

158 matches found

NVD
NVDadded 3 days ago5 views

CVE-2026-11312

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purgekvmap in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The...

4.8CVSS0.00013EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 3 days ago4 views

CVE-2026-11312

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purgekvmap in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The...

4.8CVSS4.8AI score0.00013EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichmentadded 3 days ago4 views

CVE-2026-11312 bytedance InfiniStore KV Map infinistore.h purge_kv_map algorithmic complexity

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purgekvmap in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The...

4.8CVSS4.8AI score0.00013EPSS
Exploits0References6
CVE
CVEadded 3 days ago7 views

CVE-2026-11312

Bytedance InfiniStore vulnerable up to 0.2.33 via the purge_kv_map function in infinistore.h (KV Map Handler). Manipulation leads to inefficient algorithmic complexity. Attack requires local access; exploit publicly disclosed. No remediation details provided in the supplied documents.

4.8CVSS5.4AI score0.00013EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 3 days ago8 views

PT-2026-46877

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purge kv map in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The...

4.8CVSS5.4AI score0.00013EPSS
Exploits0References7
NVD
NVDadded 4 days ago6 views

CVE-2026-10813

A flaw has been found in LMCache up to 0.4.6. This affects the function hexhashtoint16 of the file lmcache/integration/vllm/utils.py of the component KV Cache Handler. Executing a manipulation can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level ...

3.6CVSS0.00009EPSS
Exploits0References7
Cvelist
Cvelistadded 4 days ago30 views

CVE-2026-10814 milvus-io milvus Grantee ID Hash kv_catalog.go weak hash

A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...

4.5CVSS0.00009EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 4 days ago4 views

CVE-2026-10814

A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...

4.5CVSS4.8AI score0.00009EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichmentadded 4 days ago6 views

CVE-2026-10813 LMCache KV Cache utils.py hex_hash_to_int16 weak hash

A flaw has been found in LMCache up to 0.4.6. This affects the function hexhashtoint16 of the file lmcache/integration/vllm/utils.py of the component KV Cache Handler. Executing a manipulation can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level ...

3.6CVSS5.1AI score0.00009EPSS
Exploits0References7
CVE
CVEadded 4 days ago8 views

CVE-2026-10813

Technical details about CVE-2026-10813 are not publicly available in the provided documents. Monitor for updates from LMCache advisories for affected components, impact, and patch availability.

3.6CVSS5.1AI score0.00009EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 4 days ago4 views

CVE-2026-10813

A flaw has been found in LMCache up to 0.4.6. This affects the function hexhashtoint16 of the file lmcache/integration/vllm/utils.py of the component KV Cache Handler. Executing a manipulation can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level ...

3.6CVSS5.1AI score0.00009EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/05/29 6:28 p.m.27 views

CVE-2026-4387 Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file

StrongDM Desktop Application before 23.74.0 Desktop Client before 53.77.0 on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a per-user state file located at C:\Users\.sdm\state.kv. The file is protected only by default...

2CVSS0.00007EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/05/27 3:10 a.m.6 views

SUSE CVE-2025-11374

Consul and Consul Enterprise's “Consul” key/value endpoint is vulnerable to denial of service DoS due to incorrect Content Length header validation. This vulnerability, CVE-2025-11374, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

6.5CVSS5.8AI score0.00039EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/05/16 1:11 a.m.5 views

SUSE CVE-2026-44283

etcd is a distributed key-value store for the data of a distributed system. Prior to 3.4.44, 3.5.30, and 3.6.11, a vulnerability in etcd allows read access via PrevKv, or lease attachment in Put requests within transaction operations, to bypass RBAC authorization checks. An authenticated user...

4.3CVSS5.8AI score0.00012EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/14 5:1 p.m.6 views

CVE-2026-44283

etcd is a distributed key-value store for the data of a distributed system. Prior to 3.4.44, 3.5.30, and 3.6.11, a vulnerability in etcd allows read access via PrevKv, or lease attachment in Put requests within transaction operations, to bypass RBAC authorization checks. An authenticated user...

5.8AI score0.00012EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/05/13 8:14 p.m.7 views

Security Bulletin: Vault KVv2 Metadata and Secret Deletion Policy Bypass Denial-of-Service

Summary An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized to read or write, resulting in denial-of-service. This vulnerability did not allow a malicious user to delete secrets across namespaces, nor read any...

8.1CVSS5.7AI score0.0002EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/04/28 8:35 a.m.6 views

CVE-2026-7141

A flaw was found in vllm. A remote attacker can exploit a vulnerability in the hasmambalayers function within the KV Block Handler component. By performing a specific manipulation, an uninitialized resource can be triggered, potentially leading to information disclosure or denial of service. The...

6.3CVSS5.1AI score0.00075EPSS
Exploits0References10
Github Security Blog
Github Security Blogadded 2026/04/27 6:32 p.m.3 views

vLLM makes Use of Uninitialized Resource

A vulnerability was found in vLLM up to 0.19.0. The affected element is the function hasmambalayers of the file vllm/v1/kvcacheinterface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is...

6.3CVSS5.5AI score0.00075EPSS
Exploits0References9Affected Software1
OSV
OSVadded 2026/04/27 6:32 p.m.2 views

GHSA-X368-4G9H-FVV4 vLLM makes Use of Uninitialized Resource

A vulnerability was found in vLLM up to 0.19.0. The affected element is the function hasmambalayers of the file vllm/v1/kvcacheinterface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is...

6.3CVSS5.5AI score0.00075EPSS
Exploits0References8
NVD
NVDadded 2026/04/27 5:16 p.m.0 views

CVE-2026-7141

A vulnerability was found in vllm up to 0.19.0. The affected element is the function hasmambalayers of the file vllm/v1/kvcacheinterface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is...

6.3CVSS0.00075EPSS
Exploits0References7
Rows per page
Query Builder