cbcvebase.
CVE-2026-26190
published 2026-02-13

CVE-2026-26190: Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which…

PriorityP190critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
27.66%
97.8th percentile
Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus exposes TCP port 9091 by default, which enables authentication bypasses. The /expr debug endpoint uses a weak, predictable default authentication token derived from etcd.rootPath (default: by-dev), enabling arbitrary expression evaluation. The full REST API (/api/v1/*) is registered on the metrics/management port without any authentication, allowing unauthenticated access to all business operations including data manipulation and credential management. This vulnerability is fixed in 2.5.27 and 2.6.10.

Affected

6 ranges
VendorProductVersion rangeFixed in
github.commilvus-io_milvus>= 0 < 2.5.272.5.27
github.commilvus-io_milvus>= 2.6.0 < 2.6.102.6.10
milvus-iomilvus< 2.5.272.5.27
milvus-iomilvus
milvusmilvus< 2.5.272.5.27
milvusmilvus>= 2.6.0 < 2.6.102.6.10

Detection & IOCsextracted from sources · hover to see the quote

port9091/TCP
url/expr
url/api/v1/*
otherauth=by-dev
commandGET /expr?auth=by-dev&code={{num1}}*{{num2}} HTTP/1.1
othershodan-query: 'http.html:"404 page not found" port:"9091"'
  • Detect exploitation attempts against the /expr debug endpoint by monitoring for HTTP GET requests to /expr with the 'auth=by-dev' parameter on port 9091.
  • Monitor for unauthenticated HTTP requests to /api/v1/* on TCP port 9091, which is the metrics/management port exposing the full REST API without authentication.
  • Use Shodan to identify exposed Milvus instances: search for hosts returning '404 page not found' on port 9091.
  • ·The default authentication token 'by-dev' is derived from the etcd.rootPath configuration value. If etcd.rootPath has been changed from its default, the token will differ — but the /api/v1/* REST API remains unauthenticated regardless.
  • ·Exploitation requires network access to TCP port 9091. Instances not exposed to untrusted networks have reduced risk, but the vulnerability is still present.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.