References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath (default: by-dev), enabling arbitrary expression evaluation. The full REST API (/api/v1/*) is registered on the metrics/management port without any authentication, allowing unauthenticated access to all business operations including data manipulation and credential management. This vulnerability is fixed in 2.5.27 and 2.6.10.

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-306

https://github.com/milvus-io/milvus/commit/92b74dd2e286006a83b4a5f07951027b32e718a9

https://github.com/milvus-io/milvus/releases/tag/v2.5.27

https://github.com/milvus-io/milvus/releases/tag/v2.6.10

https://github.com/milvus-io/milvus/security/advisories/GHSA-7ppg-37fh-vcr6