CVE-2026-10705 | dask up to 3.0 HLL hyperloglog.py nunique_approx resource consumption (Issue 12403)

Inserito da Angelo Barbosa | Giu 2, 2026 | CVE

A vulnerability classified as problematic has been found in dask up to 3.0. Affected by this issue is the function nunique_approx of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption.

This vulnerability is tracked as CVE-2026-10705. The attack is possible to be carried out remotely. No exploit exists.

The pull request to fix this issue awaits acceptance.

CVE-2026-10705 | dask up to 3.0 HLL hyperloglog.py nunique_approx resource consumption (Issue 12403)

Post correlati

CVE-2025-14373 | Google Chrome up to 143.0.7499.41 Toolbar Remote Code Execution

CVE-2026-24324 | SAP BusinessObjects Business Intelligence Platform 2025/2027/ENTERPRISE 430 AdminTools amplification

CVE-2022-48770 | Linux Kernel up to 5.10.95/5.15.18/5.16.4 bpf_get_task_stack return value

CVE-2025-59997 | Juniper Junos Space up to 24.1R3 cross site scripting (JSA103140)