CVE-2026-33310

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell() syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell(<command>), the command may be executed when the catalog source is accessed. This means that if a user loads a malicious catalog YAML, embedded commands could execute on the host system. Version 2.0.9 mitigates the issue by making getshell False by default everywhere.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/intake/intake/commit/d0c0b6b57c1cb3f73880655ded4a9b0e18e1fd1b	Patch
https://github.com/intake/intake/security/advisories/GHSA-37g4-qqqv-7m99	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:intake:intake:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2026-03-24 14:16

Updated : 2026-03-25 20:54

NVD link : CVE-2026-33310

Mitre link : CVE-2026-33310

CVE.ORG link : CVE-2026-33310

JSON object : View

Products Affected

intake

intake

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2026-33310", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2026-03-24T14:16:30.130", "references": [{"url": "https://github.com/intake/intake/commit/d0c0b6b57c1cb3f73880655ded4a9b0e18e1fd1b", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/intake/intake/security/advisories/GHSA-37g4-qqqv-7m99", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-78"}, {"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell() syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell(<command>), the command may be executed when the catalog source is accessed. This means that if a user loads a malicious catalog YAML, embedded commands could execute on the host system. Version 2.0.9 mitigates the issue by making getshell False by default everywhere."}, {"lang": "es", "value": "Intake es un paquete para encontrar, investigar, cargar y difundir datos. Antes de la versi\u00f3n 2.0.9, la sintaxis shell() dentro de los valores predeterminados de los par\u00e1metros parece expandirse autom\u00e1ticamente durante el proceso de an\u00e1lisis del cat\u00e1logo. Si un cat\u00e1logo contiene un valor predeterminado de par\u00e1metro como shell(), el comando puede ejecutarse cuando se accede a la fuente del cat\u00e1logo. Esto significa que si un usuario carga un YAML de cat\u00e1logo malicioso, los comandos incrustados podr\u00edan ejecutarse en el sistema anfitri\u00f3n. La versi\u00f3n 2.0.9 mitiga el problema al establecer getshell en False por defecto en todas partes."}], "lastModified": "2026-03-25T20:54:34.937", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:intake:intake:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46D0915D-89C6-4029-A014-D5CF00C57F81", "versionEndExcluding": "2.0.9"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}