cbcvebase.

Giskard-Ai Giskard-Oss vulnerabilities

3 known vulnerabilities affecting giskard-ai/giskard-oss.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2026-34172P2HIGHCVSS 8.8fixed in 0.3.4v>= 1.0.1a1, < 1.0.2b12026-03-31
CVE-2026-34172 [HIGH] CWE-1336 CVE-2026-34172: Giskard is an open-source Python library for testing and evaluating agentic systems. Prior to versio Giskard is an open-source Python library for testing and evaluating agentic systems. Prior to versions 0.3.4 and 1.0.2b1, ChatWorkflow.chat(message) passes its string argument directly as a Jinja2 template source to a non-sandboxed Environment. A developer who passes user input to this method enables full remote code execution via Jinja2 class traver
nvd
CVE-2026-40320P3HIGHCVSS 7.8fixed in 1.0.2b12026-04-17
CVE-2026-40320 [HIGH] CWE-1336 CVE-2026-40320: Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the Conform Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the ConformityCheck class rendered the rule parameter through Jinja2's default Template() constructor, silently interpreting template expressions at runtime. If check definitions are loaded from an untrusted source, a crafted rule string could achieve arbitrary c
nvd
CVE-2026-40319P4MEDIUMCVSS 5.5fixed in 1.0.2b12026-04-17
CVE-2026-40319 [MEDIUM] CWE-1333 CVE-2026-40319: Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMa Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger catastrophic backtracking, causing the process to hang indefinitely. Exploita
nvd
Giskard-Ai Giskard-Oss vulnerabilities | cvebase