Which versions of Open Notebook are affected by CVE-2026-33587?

Open Notebook v1.8.3 contains a critical server-side template injection vulnerability that allows any local user with access to transformation features to execute arbitrary Python code and operating…

Open Notebook CVE-2026-33587

Q: What is the CVSS score of CVE-2026-33587?

CVE-2026-33587 has a CVSS 4.0 base score of 9.2 (Critical). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-28346 CRITICAL

Improper Input Validation (CWE-20)

2026-05-07 ENISA

GHSA-jqjr-j3vj-vwq3

Python Docker Code Injection

9.2

CVSS 4.0

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

May 07, 2026 - 11:30 vuln.today

CVSS changed

May 07, 2026 - 11:22 NVD

9.2 (CRITICAL)

CVE Published

May 07, 2026 - 10:22 nvd

CRITICAL 9.2

DescriptionNVD

Lack of user input sanitisation in Open Notebook v1.8.3 allows the application user to execute Python code (and subsequently OS commands) on the docker container via Server-Side Template Injection (SSTI) for user-created transformations.

AnalysisAI

Server-Side Template Injection in Open Notebook v1.8.3 enables arbitrary Python code execution and OS command execution within the Docker container through unsanitized user input in transformation features. The vulnerability requires local access (CVSS AV:L) but no authentication or user interaction, making it exploitable by any application user with access to the transformation creation interface. …

RemediationAI

Within 24 hours: Inventory all Open Notebook v1.8.3 deployments and identify which users have access to transformation creation features; restrict access to transformation features via application-level controls or network segmentation until patch available. Within 7 days: Document all transformation feature activity in audit logs and conduct forensic review for exploitation signs; implement network egress filtering to limit command execution impact. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-33587 vulnerability details – vuln.today

Back

Open Notebook CVE-2026-33587

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Open Notebook CVE-2026-33587

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code