CVE-2026-33310

Name of the Vulnerable Software and Affected Versions Intake versions prior to 2.0.9

Description Intake is a package used for finding, investigating, loading, and disseminating data. A flaw exists where the shell() syntax within parameter default values is automatically expanded during catalog parsing. If a catalog contains a parameter default such as shell(), the command may be executed when the catalog source is accessed. This allows an attacker to execute commands on the host system by embedding them within a malicious catalog YAML file. The issue originates from how parameter default values are expanded during catalog loading and source access, specifically involving the expand defaults() function and related parameter parsing mechanisms. A proof-of-concept demonstrates that a malicious YAML file can be crafted to execute arbitrary commands, such as creating a file in the /tmp directory. An attacker could distribute a malicious catalog file through various channels, including Git repositories, shared datasets, and URLs. A successful attack could allow an attacker to execute commands with the local user privileges of the victim.

Recommendations Versions prior to 2.0.9 should be updated to version 2.0.9 or later.