{"uuid": "e46c6c71-7c8e-414f-9aea-4c51a86e508f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45829", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mm7m4mnh3p2q", "content": "Unpatched ChromaDB flaw CVE-2026-45829, dubbed ChromaToast, enables pre-auth RCE via malicious HuggingFace models, risking server takeover and exposure of API keys, env vars, and secrets. #ChromaDB #CVE202645829 #ChromaToast", "creation_timestamp": "2026-05-19T14:30:28.248801Z"}