CVE-2026-11330

Published: Giu 05, 2026 Last Modified: Giu 05, 2026
ExploitDB:
Other exploit source:
Google Dorks:
LOW 2,0
Source: [email protected]
Attack Vector: local
Attack Complexity: high
Privileges Required: low
User Interaction: none
Confidentiality: N/A
Integrity: N/A
Availability: N/A
LOW 3,6
Source: [email protected]
Attack Vector: local
Attack Complexity: high
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: low
LOW 2,4
Source: [email protected]
Access Vector: local
Access Complexity: high
Authentication: single
Confidentiality: none
Integrity: partial
Availability: partial

Description

AI Translation Available

A weakness has been identified in thedotmack claude-mem up to 11.0.1. The affected element is the function computeObservationContentHash of the file src/services/sqlite/observations/store.ts of the component Observation Content Hash Handler. This manipulation causes use of weak hash. The attack can only be executed locally. The attack's complexity is rated as high. The exploitability is described as difficult. Upgrading to version 12.0.0 is sufficient to fix this issue. Patch name: f32fda8b35e9fe9329f87da65c31149362a03f97. It is suggested to upgrade the affected component.

327

Use of a Broken or Risky Cryptographic Algorithm

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Integrity Accountability Non-Repudiation
Potential Impacts:
Read Application Data Modify Application Data Hide Activities
Applicable Platforms
Languages: Not Language-Specific, Verilog, VHDL
Technologies: Not Technology-Specific, ICS/OT
Likelihood of Exploit: High
View CWE Details
328

Use of Weak Hash

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Access Control
Potential Impacts:
Bypass Protection Mechanism
Applicable Platforms
Technologies: ICS/OT
View CWE Details
https://github.com/thedotmack/claude-mem/
https://github.com/thedotmack/claude-mem/
https://github.com/thedotmack/claude-mem/commit/f32fda8b35e…
https://github.com/thedotmack/claude-mem/commit/f32fda8b35e9fe9329f87da65c31149…
https://github.com/thedotmack/claude-mem/pull/1494
https://github.com/thedotmack/claude-mem/pull/1494
https://github.com/thedotmack/claude-mem/releases/tag/v12.0…
https://github.com/thedotmack/claude-mem/releases/tag/v12.0.0
https://vuldb.com/cve/CVE-2026-11330
https://vuldb.com/cve/CVE-2026-11330
https://vuldb.com/submit/832401
https://vuldb.com/submit/832401
https://vuldb.com/vuln/368870
https://vuldb.com/vuln/368870
https://vuldb.com/vuln/368870/cti
https://vuldb.com/vuln/368870/cti