A vulnerability was found in milvus-io milvus up to 2.6.13 . It has been classified as problematic . This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kv_catalog.go of the component Grantee ID Hash Handler . The manipulation leads to use of weak hash. This vulnerability is documented as CVE-2026-10814 . The attack needs to be performed locally. Additionally, an exploit exists. Applying a patch is the recommended action to fix this issue.