Lucene search
K

16 matches found

OSV
OSV
added 2026/02/19 8:47 a.m.4 views

BIT-MILVUS-2026-26190 Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise

Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath...

9.8CVSS5.8AI score0.27661EPSS
Exploits1References5
OSV
OSV
added 2026/02/17 6:9 p.m.11 views

GO-2026-4481 Milvus: Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise in github.com/milvus-io/milvus

Milvus: Unauthenticated Access to Restful API on Metrics Port 9091 Leads to Critical System Compromise in github.com/milvus-io/milvus. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

9.8CVSS5.6AI score0.27661EPSS
Exploits1References3
NVD
NVD
added 2026/02/13 7:17 p.m.9 views

CVE-2026-26190

Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath...

9.8CVSS0.27661EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/13 6:44 p.m.5 views

CVE-2026-26190 Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise

Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath...

9.8CVSS5.7AI score0.27661EPSS
Exploits1References4
CVE
CVE
added 2026/02/13 6:44 p.m.26 views

CVE-2026-26190

Milvus prior to versions 2.5.27 and 2.6.10 exposes TCP 9091 by default, enabling authentication bypasses. The /expr debug endpoint uses a weak default token (etcd.rootPath, default: by-dev) allowing arbitrary expression evaluation. The REST API (/api/v1/*) is registered on the metrics/management ...

9.8CVSS5.7AI score0.27661EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/02/13 6:44 p.m.5 views

CVE-2026-26190 Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise

Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath...

9.8CVSS5.8AI score0.27661EPSS
Exploits1References6
OSV
OSV
added 2026/02/11 7:49 p.m.5 views

GHSA-7PPG-37FH-VCR6 Milvus: Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise

Summary Milvus exposes TCP port 9091 by default with two critical authentication bypass vulnerabilities: 1. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath default: by-dev, enabling arbitrary expression evaluation. 2. The full REST API...

9.8CVSS6.8AI score0.27661EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.15 views

PT-2026-8025

Name of the Vulnerable Software and Affected Versions Milvus versions prior to 2.5.27 Milvus versions prior to 2.6.10 Description Milvus, an open-source vector database for generative AI applications, is affected by an issue that allows authentication bypasses. The software exposes TCP port 9091 ...

9.9CVSS5.6AI score0.27661EPSS
Exploits45References126
RedhatCVE
RedhatCVE
added 2025/05/23 6:4 a.m.5 views

CVE-2023-29193

SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The...

8.7CVSS7.1AI score0.00762EPSS
Exploits0References1
OSV
OSV
added 2024/08/20 8:29 p.m.16 views

GO-2023-1723 SpiceDB binding metrics port to untrusted networks and can leak command-line flags in github.com/authzed/spicedb

SpiceDB binding metrics port to untrusted networks and can leak command-line flags in github.com/authzed/spicedb...

8.7CVSS7.8AI score0.00762EPSS
Exploits0References4
NVD
NVD
added 2023/04/14 8:15 p.m.15 views

CVE-2023-29193

SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The...

8.7CVSS8.8AI score0.00762EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/14 7:1 p.m.14 views

CVE-2023-29193 SpiceDB binding metrics port to untrusted networks and can leak command-line flags

SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The...

8.7CVSS8.8AI score0.00762EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/04/14 7:1 p.m.39 views

CVE-2023-29193 SpiceDB binding metrics port to untrusted networks and can leak command-line flags

SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The...

8.7CVSS9AI score0.00762EPSS
Exploits0References3
OSV
OSV
added 2023/04/13 5:53 p.m.22 views

GHSA-CJR9-MR35-7XH6 SpiceDB binding metrics port to untrusted networks and can leak command-line flags

Background The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The values of this flag are to be considered sensitive, secret data. The /debug/pprof/cmdline endpoint served by the metrics service...

8.1CVSS8.1AI score0.00762EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/01/16 12:0 a.m.3 views

PT-2023-35502 · Tor · Tor

Name of the Vulnerable Software and Affected Versions: tor versions 0.4.7.12 through 0.4.7.13 Description: The issue concerns a fix for the SafeSocks option to avoid DNS leaks. Additionally, there are improvements to congestion control and fixes for relay channel handling. New metrics are also...

7.3AI score
Exploits0References3
OSV
OSV
added 2021/02/23 5:5 p.m.4 views

OPENSUSE-SU-2021:0334-1 Security update for tor

This update for tor fixes the following issues: tor was updated to 0.4.5.6: https://lists.torproject.org/pipermail/tor-announce/2021-February/000214.html Introduce a new MetricsPort HTTP interface Support IPv6 in the torrc Address option Add event-tracing library support for USDT and LTTng-UST Tr...

6.8AI score
Exploits0References2
Rows per page
Query Builder