Milvus Proxy Authentication Bypass Vulnerability Granting Administrative Access
Vulnerability
A critical authentication bypass vulnerability has been identified in the Milvus Proxy component of the open-source vector database Milvus, affecting versions prior to 2.4.24, 2.5.21, and 2.6.5. This vulnerability allows an unauthenticated attacker to bypass all authentication mechanisms, gaining full administrative access to the Milvus cluster. Exploitation of this vulnerability enables the attacker to read, modify, or delete data, as well as perform privileged administrative operations such as managing databases or collections.
Impact
Exploitation of this vulnerability allows for complete administrative access to the Milvus cluster, enabling unauthorized users to read, modify, or delete data and manage databases or collections.
Remediation
Users are advised to upgrade to Milvus versions 2.4.24, 2.5.21, or 2.6.5. If an immediate upgrade is not possible, the vulnerability can be temporarily mitigated by removing the sourceID header from all incoming requests at the gateway, API gateway, or load balancer level before they reach the Milvus Proxy.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.