Articles
Newsflash
2 Jul 2026 Data Management and Analytics
Elasticsearch: Denial of Service via Unrestricted Resource Allocation in Machine Learning

In Elasticsearch versions up to 8.19.16/9.3.5/9.4.2 a medium severity vulnerability CVE-2026-56149 was detected. This vulnerability allows an authenticated user with elevated privileges to cause a Denial of Service (DoS) by rendering the affected node unavailable. This occurs due to an Allocation of Resources Without Limits or Throttling (CWE-770) flaw in the processing of machine learning requests. By submitting a specially crafted machine learning request, an attacker can trigger excessive memory allocation (CAPEC-130), leading to resource exhaustion and the subsequent unavailability of the Elasticsearch node. There’s no fix available for this issue at the moment. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-56149.

Read more
Data Analytics
2 Jul 2026 Data Management and Analytics
Docling: Information Disclosure and DoS via Unsafe XML Parsing in METS-GBS Backend

In Docling versions 2.45.0 to before 2.91.0 a medium severity vulnerability CVE-2026-44018 was detected. This vulnerability allows an attacker to read sensitive files, exhaust system resources, or cause application crashes, leading to unauthorized information disclosure and Denial of Service (DoS). This occurs due to unsafe archive extraction and a lack of security controls during XML parsing in the METS-GBS backend. By crafting a malicious METS-GBS archive and exploiting the input document format detection mechanisms (such as via XML External Entity (XXE) injection or archive bombs), an attacker can compromise the parsing process. To address this issue, users should upgrade Docling to version 2.91.0 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-44018.

Read more
Data Analytics
2 Jul 2026 DevOps
Argo Workflows: Information Disclosure via Unauthorized Template Access

In Argo Workflows versions prior to 3.7.11 and 4.0.2 a high severity vulnerability CVE-2026-28229 was detected. This vulnerability allows an unauthenticated or improperly authenticated attacker to retrieve sensitive template content, including embedded Secret manifests, leading to unauthorized information disclosure. This occurs because the Workflow templates endpoints fail to properly validate authorization tokens. Specifically, an attacker can bypass authentication by sending a request with a dummy token, such as Authorization: Bearer nothing, to access WorkflowTemplates and ClusterWorkflowTemplates. To address this issue, users should upgrade Argo Workflows to versions 3.7.11, 4.0.2, or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-28229.

Read more
Application Development
2 Jul 2026 DevOps
Appsmith: Remote Code Execution via Exposed Supervisord XML-RPC Interface

In Appsmith versions prior to 2.1 a high severity vulnerability CVE-2026-50189 was detected. This vulnerability allows an authenticated administrator to execute arbitrary OS commands inside the Docker container, leading to Remote Code Execution (RCE). This occurs because the bundled supervisord exposes an XML-RPC interface that is reachable from outside the container via a Caddy reverse-proxy route at /supervisor/*. Additionally, the required authentication password (APPSMITH_SUPERVISOR_PASSWORD) is inadvertently exposed via the GET /api/v1/admin/env endpoint. By combining these issues, an attacker can retrieve the password, authenticate, and send maliciously crafted XML-RPC calls (such as twiddler.addProgramToGroup) to execute commands on the underlying system. To address this issue, users should upgrade Appsmith to version 2.1 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-50189.

Read more
Application Development
2 Jul 2026 Data Management and Analytics
ChromaDB: Remote Code Execution via Malicious Model Repository

In ChromaDB versions 0.4.17 and later a high severity vulnerability CVE-2026-45833 was detected. This vulnerability allows an authenticated attacker with UPDATE_COLLECTION permissions to execute arbitrary code on the server, leading to Remote Code Execution (RCE). This occurs due to a code injection flaw when the application handles model repositories. By sending a malicious model repository to the /api/v2/tenants/default_tenant/databases/default_database/collections/{collection_id} endpoint and setting the trust_remote_code parameter to true, an attacker can trick the system into executing their malicious payload.There’s no fix available for this issue at the moment. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-45833.

Read more
Database
1 Jul 2026 Data Management and Analytics
Docling: Arbitrary File Write via Zip Slip in EasyOCR Model Download

In Docling versions prior to 2.91.0 a high severity vulnerability CVE-2026-44017 was detected. This vulnerability allows an attacker to write arbitrary files to any location writable by the process, potentially leading to Remote Code Execution (RCE) or persistent backdoors. This occurs due to a Zip Slip flaw in the EasyOCR model download functionality, where ZIP archives are extracted without properly validating member paths. If an attacker successfully compromises the model download source—such as through a supply chain attack, DNS spoofing, or a Man-in-the-Middle (MITM) attack—they can deliver a maliciously crafted ZIP file containing directory traversal sequences. To address this issue, users should upgrade Docling to version 2.91.0 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-44017.

Read more
Data Analytics
Case Studies