A vulnerability classified as problematic was found in exo-explore exo up to 1.0.71. Affected is the function
_image_cache_key of the file src/exo/worker/engines/mlx/vision.py of the component Vision Feature Cache. The manipulation results in use of weak hash.
This vulnerability is known as CVE-2026-14738. It is possible to launch the attack remotely. Furthermore, an exploit is available.
The pull request to fix this issue awaits acceptance.