How is CVE-2026-47216 exploited?

Network reachability (required): The attacker must reach the Typesense service over the network to send a crafted HTTP request to the /multi_search endpoint (AV:N). Authentication (not-required): No credentials of any privilege level are needed; the /multi_search endpoint accepts and processes the malicious request without authentication (PR:N). Victim interaction (not-required): No user or administrator action is required; the attacker triggers the vulnerability entirely through their own request (UI:N). Attack complexity (info): The exploit is reliable and condition-free, requiring no race conditions or special environmental setup beyond network access to the endpoint (AC:L).

What is the impact of CVE-2026-47216?

The Typesense server process terminates immediately upon receiving the crafted request, taking the search service offline. All queries in flight at the time of the crash are dropped, returning errors to any application or user relying on the search endpoint. Depending on restart configuration and dataset size, the service may remain unavailable for an extended period while the process recovers and reloads its index.

Back to search

HIGHCVE-2026-47216Published 2026-06-12Modified 2026-06-12CNA GitHub_M

CVE-2026-47216: Typesense: Unauthenticated Denial of Service in the Typesense /multi_search Endpoint

Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is an unauthenticated denial-of-service vulnerability in the /multi_search endpoint. A specially crafted request can trigger an unhandled exception during request processing, causing the server process to terminate. This issue can be exploited over the network without authentication and results in service unavailability. The duration of impact may vary depending on system configuration and dataset size. This issue has been patched in versions 29.1 and 30.2.

CVSS v4.0: 8.7
Severity: HIGH
Fixed in: —
Affected Products: 1

HarborGuard Analysis

Synopsis

An unauthenticated denial-of-service vulnerability exists in the Typesense search engine's /multi_search endpoint. A specially crafted HTTP request triggers an unhandled exception during request processing, causing the server process to terminate abruptly. No credentials or user interaction are needed, and successful exploitation results in complete service unavailability. The description notes fix versions 29.1 and 30.2 exist upstream; however, no patched-image rebuild is currently available on HarborGuard because no fix versions have been formally published in the advisory feed yet, and HarborGuard is tracking the advisory for confirmation.

HarborGuard Coverage

Detection

Detection of CVE-2026-47216 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against customer images in connected registries and CI pipelines, including custom-built images that bundle the Typesense binary or its libraries.

Available

Triage

HarborGuard scores this CVE at 8.7 HIGH (CVSS v4.0) and surfaces it through per-environment compliance policy weighting, routing alerts to the appropriate team inbox within each customer organization based on configured severity thresholds and workload ownership rules.

Available

Patch

No fix versions have been confirmed in the advisory feed at this time, so no patched-image rebuild is available yet. HarborGuard re-evaluates the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment upstream fix metadata is published.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The attacker must reach the Typesense service over the network to send a crafted HTTP request to the /multi_search endpoint (AV:N).
AuthenticationNot required
No credentials of any privilege level are needed; the /multi_search endpoint accepts and processes the malicious request without authentication (PR:N).
Victim interactionNot required
No user or administrator action is required; the attacker triggers the vulnerability entirely through their own request (UI:N).
Attack complexityDetail
The exploit is reliable and condition-free, requiring no race conditions or special environmental setup beyond network access to the endpoint (AC:L).

Blast Radius

The Typesense server process terminates immediately upon receiving the crafted request, taking the search service offline.
All queries in flight at the time of the crash are dropped, returning errors to any application or user relying on the search endpoint.
Depending on restart configuration and dataset size, the service may remain unavailable for an extended period while the process recovers and reloads its index.

How HarborGuard Handles This

Available on HarborGuard: any image in a connected registry or pipeline that includes an affected version of Typesense (prior to 29.1 in the 29.x line, or prior to 30.2 in the 30.x line) is flagged automatically. Because no fix versions have been confirmed in the upstream advisory feed, no automated patched-image rebuild or PR flow is available yet. In the interim, customers can apply compensating controls through HarborGuard network policy recommendations: isolating the Typesense service behind an authenticated reverse proxy or API gateway, restricting egress and ingress to the /multi_search endpoint via Kubernetes NetworkPolicy, or temporarily disabling public exposure of the endpoint until a patched image is available. HarborGuard will re-check the advisory on every ingest cycle and, once upstream fix metadata is confirmed, a patched-image rebuild will become available immediately; customers with auto-remediation enabled will receive a rebuilt image, a regression-test run, and a PR opened against affected workloads.

See how HarborGuard automates this

Affected packages

typesense / typesense
< 29.1 · >= 30.0, < 30.2

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

References

https://github.com/typesense/typesense/security/advisories/GHSA-fpx5-8c99-247j

Metrics

Get notified