Guardrails AI Code Injection Vulnerability Allowing Remote Code Execution

Vulnerability

A code injection vulnerability has been identified in Guardrails AI versions through 0.6.7, specifically within the Hub package installation process. This vulnerability allows for remote code execution by injecting arbitrary code into the post_install script of validator packages. The issue arises because the script path is generated from untrusted manifest data and executed without adequate validation or sanitization. As a result, an attacker who can publish malicious packages to the Hub can execute harmful code on any system where the package is installed.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Added: May 12, 2026, 6:32 PM

Updated: May 12, 2026, 6:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.9

remediation

0.0

relevance

8.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.9

remediation

0.0

relevance

8.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Guardrails AI Code Injection Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Affected Products

Guardrails AI Guardrails

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating