CVE-2024-45858

HIGH

Guardrails AI Guardrails <0.5.10 - RCE

Title source: llm

Description

An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval function, causing it to execute on the user's machine.

References (1)

Core 1

Core References

Various Sources

https://hiddenlayer.com/sai-security-advisory/2024-09-guardrails/

Scores

CVSS v3 7.8

EPSS 0.0038

EPSS Percentile 29.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-95

Status published

Products (2)

Guardrails AI/guardrails 0.2.9 - 0.5.10

pypi/guardrails-ai 0.2.9 - 0.5.10PyPI

Published Sep 18, 2024

Tracked Since Feb 18, 2026