CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

OSV•added 2026/02/25 9:16 p.m.•3 views

DEBIAN-CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.3AI score0.00063EPSS

Exploits0References1

OSV•added 2026/02/25 9:16 p.m.•3 views

CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS6AI score

Exploits0References1

OSV•added 2026/02/25 9:16 p.m.•1 views

UBUNTU-CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.8AI score0.00063EPSS

Exploits0References3

UbuntuCve•added 2026/02/25 9:16 p.m.•1 views

CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.9AI score0.00063EPSS

Exploits0References2

Vulnrichment•added 2026/02/25 8:59 p.m.•2 views

CVE-2026-3172 pgvector buffer overflow in parallel HNSW index build

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.4AI score0.00063EPSS

Exploits0References1

Debian CVE•added 2026/02/25 8:59 p.m.•3 views

CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.3AI score0.00063EPSS

Exploits0

CVE•added 2026/02/25 8:59 p.m.•16 views

CVE-2026-3172

CVE-2026-3172 describes a buffer overflow in the parallel HNSW index build of pgvector versions 0.6.0 through 0.8.1. The flaw allows a database user to leak sensitive data from other relations or crash the database server. Affected component: pgvector’s parallel HNSW index construction. Root caus...

8.1CVSS5.4AI score0.00063EPSS

Exploits0References1

ATTACKERKB•added 2026/02/25 8:59 p.m.•3 views

CVE-2026-3172

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS5.4AI score0.00063EPSS

Exploits0References2

Cvelist•added 2026/02/25 8:59 p.m.•16 views

CVE-2026-3172 pgvector buffer overflow in parallel HNSW index build

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server...

8.1CVSS0.00063EPSS

Exploits0References1

Positive Technologies•added 2026/02/25 12:0 a.m.•2 views

PT-2026-22023

Name of the Vulnerable Software and Affected Versions pgvector versions 0.6.0 through 0.8.1 Description A buffer overflow exists in the parallel HNSW index build process within pgvector versions 0.6.0 through 0.8.1. This issue allows a database user to potentially leak sensitive data from other...

8.1CVSS5.5AI score0.00063EPSS

Exploits0References16

CNNVD•added 2026/02/25 12:0 a.m.•2 views

pgvector 安全漏洞

pgvector is an open-source Postgres vector similarity search tool developed by pgvector. Versions 0.6.0 to 0.8.1 of pgvector contain security vulnerabilities. These vulnerabilities stem from buffer overflows during the parallel HNSW index construction process, which could lead to data leaks or...

8.1CVSS5.9AI score0.00063EPSS

Exploits0References2

Tenable Nessus•added 2026/02/04 12:0 a.m.•3 views

SUSE SLES16 Security Update : postgresql17 and postgresql18 (SUSE-SU-2026:20194-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:20194-1 advisory. Changes in postgresql17, postgresql18: Update to 17.7: https://www.postgresql.org/about/news/p-3171/...

5.9CVSS5.9AI score0.00061EPSS

Exploits0References7

GithubExploit•added 2026/01/31 10:42 p.m.•178 views

Exploit for CVE-2026-25211

Llama Stack pgvector Password Leak PoC CVE-2026-25211 Loc...

3.2CVSS5.9AI score0.00006EPSS

Exploits1

Snyk•added 2026/01/30 9:30 a.m.•2 views

Insertion of Sensitive Information into Log File

Overview llama-stack is a Llama Stack Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via the pgvector.py component. An attacker can obtain sensitive information by accessing log files that contain uncensored credentials. Remediation Upgrade...

6.8CVSS5.5AI score0.00006EPSS

Exploits1References2

OSV•added 2026/01/30 9:30 a.m.•1 views

GHSA-XMFJ-7PP5-FXR6 Llama Stack exposes secret in initialization log

Llama Stack aka llama-stack before 0.4.0rc3 does not censor the pgvector password in the initialization log...

3.2CVSS6.1AI score0.00006EPSS

Exploits1References4