CyberRota
← Ana sayfaya dön

CVE-2026-45832

HIGH · CVSS 8.8 EPSS %0.28

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-12T16:16:28.933 · Çekilme zamanı: 2026-06-30T18:20:19.391984+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-45832
Severity
HIGH
CVSS
8.8
EPSS
%0.28

Orijinal NVD Açıklaması

All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the authorization layer, allowing attackers to bypass authorization controls by using the V1 endpoints.