ChromaDB 0.4.17+ Auth Bypass: Tenant Data R/W Exfil
CVE-2026-45830 Published on June 12, 2026
A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authenticated users to arbitrarily read, write, update, or delete data in any tenant's collection regardless of which tenant they belong to.
Vulnerability Analysis
CVE-2026-45830 is exploitable with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.
Weakness Types
What is an Insecure Direct Object Reference / IDOR Vulnerability?
The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.
CVE-2026-45830 has been classified to as an Insecure Direct Object Reference / IDOR vulnerability or weakness.
Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Products Associated with CVE-2026-45830
stack.watch emails you whenever new vulnerabilities are published in Red Hat Enterprise Linux Ai or Red Hat Openshift Ai. Just hit a watch button to start following.
Affected Versions
ChromaDB:- Version 0.4.17, <= * is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.