CVE 9.8 CRITICAL

CVE-2026-31233_CVE-2026-31233

May 14, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Guardrails AI thru 0.6.7 contains a code injection vulnerability (CWE-94) in its Hub package installation mechanism. When installing validator packages via guardrails hub install, the system retrieves a manifest from the Guardrails Hub and dynamically executes a script specified in the post_install field. The script path is constructed from untrusted manifest data and executed without proper validation or sanitization, allowing remote code execution. An attacker who can publish malicious packages to the Hub can inject arbitrary code that will be executed on any system where a victim installs the malicious package.

AI Analysis

Code injection vulnerability in Guardrails AI Hub package installation mechanism

Basic Information

ID CVE-2026-31233

Source mitre

Published May 12, 2026 at 00:00

Modified May 14, 2026 at 19:54

Affected Product

Vendor Guardrails AI

Product Guardrails AI

Version 0.6.7

Affected Versions n/a n/a n/a

CWE Classification

CWE-94

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Guardrails AI

Product Guardrails AI

Version 0.6.7

References

{
    "lastseen": "",
    "description": "Guardrails AI thru 0.6.7 contains a code injection vulnerability (CWE-94) in its Hub package installation mechanism. When installing validator packages via guardrails hub install, the system retrieves a manifest from the Guardrails Hub and dynamically executes a script specified in the post_install field. The script path is constructed from untrusted manifest data and executed without proper validation or sanitization, allowing remote code execution. An attacker who can publish malicious packages to the Hub can inject arbitrary code that will be executed on any system where a victim installs the malicious package.",
    "published": "2026-05-12T00:00:00.000Z",
    "modified": "2026-05-14T19:54:36.856Z",
    "type": "cve",
    "title": "CVE-2026-31233",
    "source": "mitre",
    "references": "https://github.com/guardrails-ai/guardrails\nhttps://www.notion.so/CVE-2026-31233-35d1e13931888142a954fb3f50ee0c94",
    "id": "CVE-2026-31233",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Guardrails AI",
    "version": "0.6.7",
    "vendor": "Guardrails AI",
    "ai_description": "Code injection vulnerability in Guardrails AI Hub package installation mechanism",
    "ai_severity": "Critical",
    "ai_vendor": "Guardrails AI",
    "ai_product": "Guardrails AI",
    "ai_version": "0.6.7",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply