A vulnerability described as problematic has been identified in johnhuang316 code-index-mcp up to 2.14.0 . Affected is the function is_safe_regex_pattern of the component search_code_advanced . Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. This vulnerability is registered as CVE-2026-10692 . It is possible to launch the attack remotely. Furthermore, an exploit is available. Upgrading the affected component is recommended.