3 matches found
CVE-2026-33310
Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...
ddsapi (>=0.6.0b5 <=0.7.1), gandharva (=0.0.1) +9 more potentially affected by CVE-2026-33310 via intake (>=2.0.0a2 <=2.0.8)
intake PYPI version =2.0.0a2, =0.6.0b5, =0.2.7, =0.2.4, =0.6.2, =0.0.1, =0.6.4, =0.18.0, =0.19.4 Source cves: CVE-2026-33310 Source advisory: SNYK:PYTHON-INTAKE-15763544...
access-intake-esm (>=2026.4.17 <=2026.4.19), access-nri-intake (>=0.0.2 <=1.6.0) +185 more potentially affected by CVE-2026-33310 via intake (>=0.4.4 <=2.0.9)
intake PYPI version =0.4.4, =2026.4.17, =0.0.2, =0.1.0, =1.0.0, =1.5.0, =0.21.0, =1.1.0, =2024.6.4.1, =0.13.0, =0.8.0, =0.1.0a1, =0.0.0, =1.0.0, =1.2.0 and more Source cves: CVE-2026-33310 Source advisory: OSV:GHSA-37G4-QQQV-7M99...