CVE-2026-26190
PUBLISHEDMilvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise
Recommended Action
Track for updates. Assess relevance to your asset inventory and enrichment workflows.
At a Glance
Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath (default: by-dev), enabling arbitrary expression evaluation. The full REST API (/api/v1/*) is registered on the metrics/management port without any authentication, allowing unauthenticated access to all business operations including data manipulation and credential management. This vulnerability is fixed in 2.5.27 and 2.6.10.
- CVE Published
- Feb 13, 2026
- —
- —
- CVSS
- 9.8 Critical
- EPSS
- 27.7%
Affected Versions
| Vendor | Product | Version | Status |
|---|---|---|---|
| milvus-io |
milvus
|
< 2.5.27 |
Affected |
| milvus-io |
milvus
|
>= 2.6.0, < 2.6.10 |
Affected |
CVE References
- https://github.com/milvus-io/milvus/security/advisories/GHSA-7ppg-37fh-vcr6 CVE Record
- https://github.com/milvus-io/milvus/commit/92b74dd2e286006a83b4a5f07951027b32e718a9 CVE Record
- https://github.com/milvus-io/milvus/releases/tag/v2.5.27 CVE Record
- https://github.com/milvus-io/milvus/releases/tag/v2.6.10 CVE Record
Recommended Actions
- Track for updates. Assess relevance to your asset inventory and enrichment workflows.
- Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
- Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.
Scanner Artifacts
Nuclei and Metasploit references linked to this CVE.
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2026/CVE-2026-26190.yaml | Jun 09, 2026 |
Virtual Patch
Compensating WAF rules to help reduce exposure to this CVE. Rule content and deployable vendor exports are available with KEVIntel Enterprise.
KEVIntel does not currently have a virtual patch for this CVE. When available, KEVIntel virtual patches ship as deployable ModSecurity, Cloudflare, and AWS WAF rules.
Enterprise feature. Virtual patch rule content and deployable vendor exports (ModSecurity, Cloudflare, AWS WAF) are available to KEVIntel Enterprise users via the Pro API.
Learn About Virtual PatchesCVSS Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitation Status
Proof of concept available
Recorded 2026-06-12 14:21:15 UTC · Nuclei Templates
Weaknesses (CWE)
-
Missing Authentication for Critical Function
Scanner Integrations
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2026/CVE-2026-26190.yaml | Jun 09, 2026 |
Potential Proof of Concepts
These PoCs are unverified and could contain malware. Use at your own risk.
nuclei · Created Unknown
Timeline
Key exploitation, disclosure, scanner coverage, and KEV attestation events for this CVE.
-
14:21 UTC 21 days ago14:21 UTC · 21 days ago
Public PoC available
Public proof-of-concept code published
-
04:30 UTC 25 days ago04:30 UTC · 25 days ago
Nuclei template available
Scanner coverage available
-
18:44 UTC 5 months ago18:44 UTC · 5 months ago
CVE published
Vulnerability disclosed publicly
-
19:56 UTC 5 months ago19:56 UTC · 5 months ago
CVE ID reserved
Identifier reserved by the CNA
Automate This Intelligence with the Pro API
Confidence scoring, exploit status, sensor telemetry, PoCs, scanner integrations, mentions, and tags are available programmatically for VM, SOC, and CTI workflows.
Pro API Example
GET /api/v2/pro/kevs/CVE-2026-26190
{
"cve_id": "CVE-2026-26190",
"title": "Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Le...",
"affected_vendor": "milvus-io",
"affected_product": "milvus",
"affected_versions": [
{ "vendor": "...", "product": "...", "status": "affected", "display_label": "..." }
],
"confidence": null,
"cvss_score": 9.8,
"epss_score": 0.27661,
"exploit_status": {
"exploited_in_the_wild": false,
"active_exploitation_observed": false
},
"sensor_telemetry": { "...": "Pro API fields" },
"proof_of_concepts": [ "..." ],
"scanner_integrations": [ "..." ]
}