Unpatched ChromaDB flaw leaves servers open to remote code execution | CSO Online
Unpatched ChromaDB flaw leaves servers open to remote code execution | CSO Online
www.csoonline.com
Unpatched ChromaDB flaw leaves servers open to remote code execution
The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI models before authentication is checked.
