CVE-2026-31228CRITICAL 9.8EPSS p41.3%

CVE-2026-31228CVE-2026-31228

Description

The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe eval() function to dynamically evaluate user-supplied strings for the LossFn and Optimizer parameters without any sanitization or security restrictions. An attacker can exploit this by providing a specially crafted string that contains arbitrary Python code, which will be executed when eval() is called, leading to complete compromise of the system running the ART evaluation.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.54% probability of exploitation · percentile 41.3% · 2026-06-19T12:03:05Z
Published2026-05-12
Last modified2026-05-13

Underlying weaknesses· 1

CWE-94

References

  1. https://github.com/Trusted-AI/adversarial-robustness-toolbox
  2. https://www.notion.so/CVE-2026-31228-35d1e1393188817f9ab0dc4b1651dfe9

1

TypeTargetConfidenceTier
WeaknessImproper Control of Generation of Code ('Code Injection')cwe-940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-31230
CVE
CVE-2026-31229
CVE
CVE-2025-32434
CVE
CVE-2026-31217
CVE
CVE-2026-31218
CVE
CVE-2026-38950
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.