CVE-2026-10814 | milvus-io milvus up to 2.6.13 Grantee ID Hash kv_catalog.go weak hash (Issue 49857)

A vulnerability was found in milvus-io milvus up to 2.6.13. It has been classified as problematic. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kv_catalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash.

This vulnerability is documented as CVE-2026-10814. The attack needs to be performed locally. Additionally, an exploit exists.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More