CVE-2026-2275

{"id": "CVE-2026-2275", "cveTags": [], "metrics": {}, "published": "2026-03-30T16:16:04.557", "references": [{"url": "https://docs.crewai.com/en/tools/ai-ml/codeinterpretertool", "source": "cret@cert.org"}, {"url": "https://www.kb.cert.org/vuls/id/221883", "source": "cret@cert.org"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling."}], "lastModified": "2026-03-30T16:16:04.557", "sourceIdentifier": "cret@cert.org"}