What is the CVSS score of CVE-2026-31231?

CVE-2026-31231 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Cognee are affected by CVE-2026-31231?

Cognee v0.4.0 and earlier contains a critical remote code execution vulnerability allowing unauthenticated attackers to execute arbitrary code on affected servers, potentially compromising all data…

Cognee CVE-2026-31231

EUVD-2026-29554 CRITICAL

Code Injection (CWE-94)

2026-05-12 mitre

GHSA-fcch-9ph8-q3p4

RCE Python Code Injection N A

9.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

May 15, 2026 - 21:30 vuln.today

CVSS changed

May 15, 2026 - 19:22 NVD

9.8 (CRITICAL)

CVE Published

May 12, 2026 - 00:00 nvd

UNKNOWN (no severity yet)

DescriptionNVD

Cognee thru v0.4.0 contains a critical remote code execution vulnerability in its notebook cell execution API endpoint. The endpoint is designed to execute arbitrary Python code provided by the user, but it does so using the unsafe exec() function without any sandboxing, validation, or security controls. An attacker can exploit this by sending a specially crafted POST request containing malicious Python code to the execution endpoint. This leads to arbitrary code execution on the Cognee server with the privileges of the server process, allowing complete compromise of the system.

AnalysisAI

Remote code execution in Cognee v0.4.0 and earlier allows unauthenticated attackers to execute arbitrary Python code via the notebook cell execution API endpoint. The vulnerability stems from unsafe use of Python's exec() function without sandboxing or validation, enabling complete system compromise with server process privileges. …

RemediationAI

Within 24 hours: Identify all instances of Cognee v0.4.0 or earlier in production and development environments; take affected systems offline or restrict network access to trusted networks only. Within 7 days: Monitor the Cognee project repository and vendor advisory channels for patch availability; document all systems running Cognee versions in scope. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-31231 vulnerability details – vuln.today

Back

Cognee CVE-2026-31231

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code