CVE-2026-45832

HIGH

ChromaDB - Authorization Bypass Through User-Controlled Key

Title source: rule

Description

All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the authorization layer, allowing attackers to bypass authorization controls by using the V1 endpoints.

References (1)

Core 1

Core References

https://www.hiddenlayer.com/sai-security-advisory/2026-06-chromadb-4

Scores

CVSS v4 8.8

EPSS 0.0037

EPSS Percentile 28.8%

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-639

Status published

Products (1)

Chroma/ChromaDB 0.5.0

Published Jun 12, 2026

Tracked Since Jun 12, 2026