CVE-2026-40173 | dgraph-io dgraph up to 25.3.1 /debug/pprof/cmdline cache_mb information disclosure (GHSA-95mq-xwj4-r47p)

A vulnerability, which was classified as problematic, was found in dgraph-io dgraph up to 25.3.1. This impacts the function cache_mb of the file /debug/pprof/cmdline. The manipulation results in information disclosure.

This vulnerability was named CVE-2026-40173. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More