CVE-2026-40319
published 2026-04-17CVE-2026-40319: Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression…
PriorityP423medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
EPSS
0.15%
4.5th percentile
Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger catastrophic backtracking, causing the process to hang indefinitely. Exploitation requires write access to a check definition and subsequent execution of the test suite. This issue has been fixed in giskard-checks version 1.0.2b1.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| giskard-ai | giskard-oss | < 1.0.2b1 | 1.0.2b1 |
| giskard | giskard | < 1.0.2 | 1.0.2 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv4.01.0LOWCVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Giskard-AI giskard-oss up to 1.0.2b0 Regex re.search redos (GHSA-rq2q-4r55-9877)
vuldb·2026-04-17·CVSS 1.0
CVE-2026-40319 [LOW] Giskard-AI giskard-oss up to 1.0.2b0 Regex re.search redos (GHSA-rq2q-4r55-9877)
A vulnerability labeled as problematic has been found in Giskard-AI giskard-oss up to 1.0.2b0. Impacted is the function re.search of the component Regex Handler. Such manipulation leads to inefficient regular expression complexity.
This vulnerability is listed as CVE-2026-40319. The attack must be carried out locally. There is no available exploit.
The affected component should be upgraded.
GHSA
Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check
ghsa·2026-04-14
CVE-2026-40319 [LOW] CWE-1333 Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check
Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check
## Summary
The RegexMatching check in the `giskard-checks` package passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout, complexity guard, or pattern validation. An attacker who can control the regex pattern or the text being matched can craft inputs that trigger catastrophic backtracking in the regex engine, causing the process to hang indefinitely and denying service to all other operations.
`giskard-checks` is a local developer testing library. Check definitions, including the pattern parameter, are provided in application code or configuration files and executed locally. Exploitation requires write access to a check definition and subsequent execution of
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-17
Published