CVE-2026-57476 in AI Assist for Customer
Resumen
por MITRE • 2026-07-10
Deloitte AI Assist for Customer exposed unauthenticated API endpoints that allowed an attacker with knowledge of additional parameters to read from or inject content into the retrieval-augmented generation (RAG) corpus. On 2026-03-25, AI Assist for Customer restricted network access and enforced authentication for the previously exposed endpoints.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.