CVE-2026-11481 – yoanbernabeu grepai Postgres Embedding Cache chunker.go PostgresStore.LookupByContentHash weak hash

CVE ID :CVE-2026-11481

Published : June 8, 2026, 3:16 a.m. | 1 hour, 17 minutes ago

Description :A vulnerability was determined in yoanbernabeu grepai up to 0.35.0. The affected element is the function PostgresStore.LookupByContentHash of the file indexer/chunker.go of the component Postgres Embedding Cache. Executing a manipulation of the argument content_hash can lead to use of weak hash. The attack needs to be launched locally. The attack requires a high level of complexity. The exploitability is described as difficult. The exploit has been publicly disclosed and may be utilized. The pull request to fix this issue awaits acceptance.

Severity: 2.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-11482 – SourceCodester Class and Exam Timetabling System archive5.php sql injection

CVE-2026-11480 – Chengdu Everbrite Network Technology BeikeShop Admin Design Builder Endpoint admin.php sql injection

CVE-2026-11479 – yoanbernabeu grepai Qdrant Backend chunker.go weak hash

CVE-2026-11478 – kokke tiny-regex-c Pattern re.c matchstar redos