CVE-2026-10804 | Streamlit up to 1.53.0 Palette hashing.py weak hash (Issue 14622)

A vulnerability labeled as problematic has been found in Streamlit up to 1.53.0. Impacted is an unknown function in the library lib/streamlit/runtime/caching/hashing.py of the component Palette Handler. Such manipulation leads to use of weak hash.

This vulnerability is uniquely identified as CVE-2026-10804. Local access is required to approach this attack. Moreover, an exploit is present.

The pull request to fix this issue awaits acceptance.VulDB Recent EntriesRead More