CVE-2026-33587

critical

Published 2026-05-07 · Modified 2026-05-07

CVSS v3

10.0

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CVSS v2

—

VIR risk

10.0

Description

Lack of user input sanitisation in Open Notebook v1.8.3 allows the application user to execute Python code (and subsequently OS commands) on the docker container via Server-Side Template Injection (SSTI) for user-created transformations.

Predictions

Exploit likelihood

98%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 — https://github.com/lfnovo/open-notebook/security/advisories/GHSA-f35w-wx37-26q7

Application impact

Vendor	Product	Versions	Fixed
lfnovo	open-notebook	`{"endExcluding":"1.8.4"}`	`1.8.4`

References

https://github.com/lfnovo/open-notebook/security/advisories/GHSA-f35w-wx37-26q7

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.