| ID |
CVE-2026-11481
|
| Sažetak |
A vulnerability was determined in yoanbernabeu grepai up to 0.35.0. The affected element is the function PostgresStore.LookupByContentHash of the file indexer/chunker.go of the component Postgres Embedding Cache. Executing a manipulation of the argument content_hash can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level of complexity. The exploitability is described as difficult. The exploit has been publicly disclosed and may be utilized. The pull request to fix this issue awaits acceptance. |
| Reference |
|
| CVSS |
| Base: | 1.0 |
| Impact: | 2.9 |
| Exploitability: | 1.5 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
HIGH |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
NONE |
NONE |
|
| CVSS vektor |
AV:L/AC:H/Au:S/C:P/I:N/A:N |
| Zadnje važnije ažuriranje |
08-06-2026 - 14:57 |
| Objavljeno |
08-06-2026 - 03:16 |
