VYPR

Bitnami package

milvus

pkg:bitnami/milvus

Vulnerabilities (3)

  • CVE-2026-10814MedJun 4, 2026
    affected < 2.6.14fixed 2.6.14

    A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kv_catalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performe

  • CVE-2026-26190Feb 13, 2026
    affected < 2.5.27fixed 2.5.27

    Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from e

  • CVE-2025-64513CriNov 10, 2025
    affected < 2.4.24fixed 2.4.24

    Milvus is an open-source vector database built for generative AI applications. An unauthenticated attacker can exploit a vulnerability in versions prior to 2.4.24, 2.5.21, and 2.6.5 to bypass all authentication mechanisms in the Milvus Proxy component, gaining full administrative