PT-2026-38419 · Open Notebook · Open Notebook
Cert-Eu
·
Published
2026-05-07
·
Updated
2026-05-07
·
CVE-2026-33588
CVSS v4.0
7.0
High
| Vector | AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N |
Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to create or modify files on the docker container via path traversal.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Open Notebook