In Elasticsearch versions up to 8.19.16/9.3.5/9.4.2 a medium severity vulnerability CVE-2026-56149 was detected. This vulnerability allows an authenticated user with elevated privileges to cause a Denial of Service (DoS) by rendering the affected node unavailable. This occurs due to an Allocation of Resources Without Limits or Throttling (CWE-770) flaw in the processing of machine learning requests. By submitting a specially crafted machine learning request, an attacker can trigger excessive memory allocation (CAPEC-130), leading to resource exhaustion and the subsequent unavailability of the Elasticsearch node. There’s no fix available for this issue at the moment. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-56149.
Read more Data AnalyticsIn Docling versions 2.45.0 to before 2.91.0 a medium severity vulnerability CVE-2026-44018 was detected. This vulnerability allows an attacker to read sensitive files, exhaust system resources, or cause application crashes, leading to unauthorized information disclosure and Denial of Service (DoS). This occurs due to unsafe archive extraction and a lack of security controls during XML parsing in the METS-GBS backend. By crafting a malicious METS-GBS archive and exploiting the input document format detection mechanisms (such as via XML External Entity (XXE) injection or archive bombs), an attacker can compromise the parsing process. To address this issue, users should upgrade Docling to version 2.91.0 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-44018.
Read more Data AnalyticsIn Argo Workflows versions prior to 3.7.11 and 4.0.2 a high severity vulnerability CVE-2026-28229 was detected. This vulnerability allows an unauthenticated or improperly authenticated attacker to retrieve sensitive template content, including embedded Secret manifests, leading to unauthorized information disclosure. This occurs because the Workflow templates endpoints fail to properly validate authorization tokens. Specifically, an attacker can bypass authentication by sending a request with a dummy token, such as Authorization: Bearer nothing, to access WorkflowTemplates and ClusterWorkflowTemplates. To address this issue, users should upgrade Argo Workflows to versions 3.7.11, 4.0.2, or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-28229.
In Appsmith versions prior to 2.1 a high severity vulnerability CVE-2026-50189 was detected. This vulnerability allows an authenticated administrator to execute arbitrary OS commands inside the Docker container, leading to Remote Code Execution (RCE). This occurs because the bundled supervisord exposes an XML-RPC interface that is reachable from outside the container via a Caddy reverse-proxy route at /supervisor/*. Additionally, the required authentication password (APPSMITH_SUPERVISOR_PASSWORD) is inadvertently exposed via the GET /api/v1/admin/env endpoint. By combining these issues, an attacker can retrieve the password, authenticate, and send maliciously crafted XML-RPC calls (such as twiddler.addProgramToGroup) to execute commands on the underlying system. To address this issue, users should upgrade Appsmith to version 2.1 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-50189.
In ChromaDB versions 0.4.17 and later a high severity vulnerability CVE-2026-45833 was detected. This vulnerability allows an authenticated attacker with UPDATE_COLLECTION permissions to execute arbitrary code on the server, leading to Remote Code Execution (RCE). This occurs due to a code injection flaw when the application handles model repositories. By sending a malicious model repository to the /api/v2/tenants/default_tenant/databases/default_database/collections/{collection_id} endpoint and setting the trust_remote_code parameter to true, an attacker can trick the system into executing their malicious payload.There’s no fix available for this issue at the moment. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-45833.
In Docling versions prior to 2.91.0 a high severity vulnerability CVE-2026-44017 was detected. This vulnerability allows an attacker to write arbitrary files to any location writable by the process, potentially leading to Remote Code Execution (RCE) or persistent backdoors. This occurs due to a Zip Slip flaw in the EasyOCR model download functionality, where ZIP archives are extracted without properly validating member paths. If an attacker successfully compromises the model download source—such as through a supply chain attack, DNS spoofing, or a Man-in-the-Middle (MITM) attack—they can deliver a maliciously crafted ZIP file containing directory traversal sequences. To address this issue, users should upgrade Docling to version 2.91.0 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-44017.
Read more Data Analytics