CyberRota
← Ana sayfaya dön

CVE-2026-8828

UNKNOWN · CVSS N/A EPSS %0.28

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-12T16:16:34.687 · Çekilme zamanı: 2026-06-30T18:20:26.143692+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-8828
Severity
UNKNOWN
CVSS
N/A
EPSS
%0.28

Orijinal NVD Açıklaması

A lack of authorization validation in version 1.0.0 or later of the ChromaDB Rust project allows any authenticated users to arbitrarily read, write, update, or delete data in any tenant's collection regardless of which tenant they belong to.