| ID |
CVE-2026-10813
|
| Sažetak |
A flaw has been found in LMCache up to 0.4.6. This affects the function hex_hash_to_int16 of the file lmcache/integration/vllm/utils.py of the component KV Cache Handler. Executing a manipulation can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level of complexity. It is indicated that the exploitability is difficult. The exploit has been published and may be used. The pull request to fix this issue awaits acceptance. |
| Reference |
|
| CVSS |
| Base: | 2.4 |
| Impact: | 4.9 |
| Exploitability: | 1.5 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
HIGH |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| NONE |
PARTIAL |
PARTIAL |
|
| CVSS vektor |
AV:L/AC:H/Au:S/C:N/I:P/A:P |
| Zadnje važnije ažuriranje |
04-06-2026 - 16:32 |
| Objavljeno |
04-06-2026 - 16:16 |
