Lucene search
K

6 matches found

OSV
OSV
added 2026/05/08 8:36 p.m.10 views

GHSA-GPHH-9Q3H-JGPP banks has Critical Remote Code Execution (RCE) via Jinja2 SSTI

Summary banks = 2.4.1 uses jinja2.Environment unsandboxed to render prompt templates. Applications that pass user-supplied strings as the template argument to Prompt are vulnerable to Server-Side Template Injection SSTI, which can lead to Remote Code Execution RCE on the host system. This is a...

7.5CVSS6AI score0.00539EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-39237

Name of the Vulnerable Software and Affected Versions banks versions prior to 2.4.2 Description Server-Side Template Injection SSTI occurs when applications pass user-supplied strings directly as template arguments to the Prompt function. This happens because the software uses jinja2.Environment ...

7.5CVSS6.1AI score0.00539EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.6 views

CVE-2026-35044

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.38, the Dockerfile generation function generatecontainerfile in src/bentoml/internal/container/generate.py uses an unsandboxed jinja2.Environment with the jinja2.ext.do extensio...

9.6CVSS6.1AI score0.00392EPSS
Exploits1References1
CVE
CVE
added 2026/04/06 5:13 p.m.24 views

CVE-2026-35044

Summary (CVE-2026-35044) BentoML prior to 1.4.38 is vulnerable to server-side template injection via an unsandboxed Jinja2 environment used to render Dockerfile templates during containerization. attacker-controlled templates can execute arbitrary Python on the host during template rendering (not...

9.6CVSS6.1AI score0.00392EPSS
Exploits1References1Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/03 11:14 p.m.7 views

BentoML: SSTI via Unsandboxed Jinja2 in Dockerfile Generation

Summary The Dockerfile generation function generatecontainerfile in src/bentoml/internal/container/generate.py uses an unsandboxed jinja2.Environment with the jinja2.ext.do extension to render user-provided dockerfiletemplate files. When a victim imports a malicious bento archive and runs bentoml...

9.6CVSS6.5AI score0.00392EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.8 views

PT-2026-30282

Summary The Dockerfile generation function generate containerfile in src/bentoml/ internal/container/generate.py uses an unsandboxed jinja2.Environment with the jinja2.ext.do extension to render user-provided dockerfile template files. When a victim imports a malicious bento archive and runs...

8.8CVSS6.5AI score0.00392EPSS
Exploits1References4
Rows per page
Query Builder