CVE-2026-26216CRITICAL 10.0EPSS p58.6%

CVE-2026-26216CVE-2026-26216

Description

Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec(). The __import__ builtin was included in the allowed builtins, allowing unauthenticated remote attackers to import arbitrary modules and execute system commands. Successful exploitation allows full server compromise, including arbitrary command execution, file read and write access, sensitive data exfiltration, and lateral movement within internal networks.

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS1.01% probability of exploitation · percentile 58.6% · 2026-06-18T12:00:27Z
Published2026-02-12
Last modified2026-02-20

Underlying weaknesses· 1

CWE-94

References

  1. https://github.com/unclecode/crawl4ai/blob/main/docs/blog/release-v0.8.0.md
  2. https://github.com/unclecode/crawl4ai/security/advisories/GHSA-5882-5rx9-xgxp
  3. https://www.vulncheck.com/advisories/crawl4ai-docker-api-unauthenticated-remote-code-execution-via-hooks-parameter

1

TypeTargetConfidenceTier
WeaknessImproper Control of Generation of Code ('Code Injection')cwe-940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-2287
CVE
CVE-2026-2275
CVE
CVE-2025-28197
CVE
CVE-2026-0768
CVE
CVE-2026-0769
CVE
CVE-2026-36576
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.