CVE 8.8 HIGH

CVE-2026-31225_CVE-2026-31225

May 13, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

The superduper project thru v0.10.0 contains a critical remote code execution vulnerability in its query parsing component. The _parse_op_part() function in query.py uses the unsafe eval() function to dynamically evaluate user-supplied query operands without proper sanitization or restriction. Although the function attempts to limit the execution context by providing a restricted global namespace, it does not block access to dangerous built-in functions. A remote attacker can exploit this by submitting a specially crafted query string containing Python code that imports modules (e.g., os) and executes arbitrary system commands, leading to complete compromise of the server.

AI Analysis

Remote code execution vulnerability in query parsing component due to unsafe eval() function usage

Basic Information

ID CVE-2026-31225

Source mitre

Published May 12, 2026 at 00:00

Modified May 13, 2026 at 13:04

Affected Product

Vendor superduper-io

Product superduper

Version v0.10.0

Affected Versions n/a n/a n/a

CWE Classification

CWE-94

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor superduper-io

Product superduper

Version v0.10.0

References

{
    "lastseen": "",
    "description": "The superduper project thru v0.10.0 contains a critical remote code execution vulnerability in its query parsing component. The _parse_op_part() function in query.py uses the unsafe eval() function to dynamically evaluate user-supplied query operands without proper sanitization or restriction. Although the function attempts to limit the execution context by providing a restricted global namespace, it does not block access to dangerous built-in functions. A remote attacker can exploit this by submitting a specially crafted query string containing Python code that imports modules (e.g., os) and executes arbitrary system commands, leading to complete compromise of the server.",
    "published": "2026-05-12T00:00:00.000Z",
    "modified": "2026-05-13T13:04:44.955Z",
    "type": "cve",
    "title": "CVE-2026-31225",
    "source": "mitre",
    "references": "https://github.com/superduper-io/superduper\nhttps://www.notion.so/CVE-2026-31225-35d1e1393188814f99b5eec7b6517190",
    "id": "CVE-2026-31225",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "superduper",
    "version": "v0.10.0",
    "vendor": "superduper-io",
    "ai_description": "Remote code execution vulnerability in query parsing component due to unsafe eval() function usage",
    "ai_severity": "High",
    "ai_vendor": "superduper-io",
    "ai_product": "superduper",
    "ai_version": "v0.10.0",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply