CVE-2026-45829 — ChromaDB Python project has a pre-authentication code injection vulnerability

Description

A pre-authentication, code injection vulnerability in version 1.0.0 or later of the ChromaDB Python project allows an unauthenticated attacker to run arbitrary code on the server by sending a malicious model repository and trust_remote_code set to true in the /api/v2/tenants/{tenant}/databases/{db}/collections endpoint.

How to fix CVE-2026-45829

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

PyPI/chromadb—no fix listed

Is CVE-2026-45829 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

>= 1.0.0, <= 1.5.9

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P

References (4)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-45829
PATCHgithub.com/chroma-core/chroma
WEBgithub.com/chroma-core/chroma/issues/6717
WEBwww.hiddenlayer.com/research/chromatoast-served-pre-auth