CVE 9.8 CRITICAL

CVE-2026-31228_CVE-2026-31228

May 13, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe eval() function to dynamically evaluate user-supplied strings for the LossFn and Optimizer parameters without any sanitization or security restrictions. An attacker can exploit this by providing a specially crafted string that contains arbitrary Python code, which will be executed when eval() is called, leading to complete compromise of the system running the ART evaluation.

AI Analysis

Remote code execution vulnerability in Kubeflow component due to unsafe eval() function usage

Basic Information

ID CVE-2026-31228

Source mitre

Published May 12, 2026 at 00:00

Modified May 13, 2026 at 14:10

Affected Product

Vendor Trusted-AI

Product Adversarial Robustness Toolbox (ART)

Version 1.20.1

Affected Versions n/a n/a n/a

CWE Classification

CWE-94

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Trusted-AI

Product Adversarial Robustness Toolbox (ART)

Version 1.20.1

References

{
    "lastseen": "",
    "description": "The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe eval() function to dynamically evaluate user-supplied strings for the LossFn and Optimizer parameters without any sanitization or security restrictions. An attacker can exploit this by providing a specially crafted string that contains arbitrary Python code, which will be executed when eval() is called, leading to complete compromise of the system running the ART evaluation.",
    "published": "2026-05-12T00:00:00.000Z",
    "modified": "2026-05-13T14:10:16.244Z",
    "type": "cve",
    "title": "CVE-2026-31228",
    "source": "mitre",
    "references": "https://github.com/Trusted-AI/adversarial-robustness-toolbox\nhttps://www.notion.so/CVE-2026-31228-35d1e1393188817f9ab0dc4b1651dfe9",
    "id": "CVE-2026-31228",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Adversarial Robustness Toolbox (ART)",
    "version": "1.20.1",
    "vendor": "Trusted-AI",
    "ai_description": "Remote code execution vulnerability in Kubeflow component due to unsafe eval() function usage",
    "ai_severity": "Critical",
    "ai_vendor": "Trusted-AI",
    "ai_product": "Adversarial Robustness Toolbox (ART)",
    "ai_version": "1.20.1",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply