CVE-2026-33587 PUBLISHED

Remote Code Execution (RCE) via Server-Side Template Injection (SSTI)

Assigner: ENISA
Reserved: 23.03.2026 Published: 07.05.2026 Updated: 07.05.2026

Lack of user input sanitisation in Open Notebook v1.8.3 allows the application user to execute Python code (and subsequently OS commands) on the docker container via Server-Side Template Injection (SSTI) for user-created transformations.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N
CVSS Score: 9.2

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	High
Attack Complexity	Low	Integrity	High	Integrity	None
Attack Requirements	None	Availability	High	Availability	None
Privileges Required	None
User Interaction	None

CVSS 4.0

Product Status

Vendor	Open Notebook
Product	Open Notebook
Versions	Default: unaffected affected from 0 to 1.8.3 (incl.)

Credits

CERT-EU finder

References

https://github.com/lfnovo/open-notebook/security/advisories/GHSA-f35w-wx37-26q7

Problem Types

CWE-20 Improper input validation CWE

Impacts

CAPEC-545 Pull Data from System Resources
CAPEC-242 Code Injection