Which versions of Open Notebook are affected by CVE-2026-33588?

Open Notebook v1.8.3 contains a path traversal vulnerability in file upload functionality that permits local attackers to write arbitrary files within the Docker container, creating risk of container…

Open Notebook CVE-2026-33588

Q: What is the CVSS score of CVE-2026-33588?

CVE-2026-33588 has a CVSS 4.0 base score of 7.0 (High). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-28347 HIGH

Improper Input Validation (CWE-20)

2026-05-07 ENISA

GHSA-c7wf-4r4p-4766

Docker Path Traversal File Upload

7.0

CVSS 4.0

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

May 07, 2026 - 11:30 vuln.today

CVSS changed

May 07, 2026 - 11:22 NVD

7.0 (HIGH)

CVE Published

May 07, 2026 - 10:28 nvd

HIGH 7.0

DescriptionNVD

Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to create or modify files on the docker container via path traversal.

AnalysisAI

Path traversal in Open Notebook v1.8.3's file upload allows arbitrary file creation or modification within the Docker container filesystem. Attackers with local access can write files outside intended directories, enabling container escape scenarios, configuration tampering, or privilege escalation by overwriting critical system files. …

RemediationAI

Within 24 hours: Disable or restrict file upload functionality in Open Notebook v1.8.3 via network controls or application configuration; inventory all instances and document their network exposure. Within 7 days: Implement filesystem-level write restrictions using Docker security policies (read-only root filesystem where feasible); apply network segmentation to limit local access to affected instances. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-33588 vulnerability details – vuln.today

Back

Open Notebook CVE-2026-33588

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Open Notebook CVE-2026-33588

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code