exploitDog

GHSA-5w94-5wxp-rc42

Опубликовано: 30 мар. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 9.6

Описание

The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling.

The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling.

Ссылки

EPSS

Процентиль: 13%

0.00042

Низкий

9.6 Critical

CVSS3

CVE ID

Дефекты

CWE-749

Связанные уязвимости

CVE-2026-2275

CVSS3: 9.6

nvd

19 дней назад

The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling.

EPSS

Процентиль: 13%

0.00042

Низкий

9.6 Critical

CVSS3

CVE ID

Дефекты

CWE-749