CVE-2026-45758
June 5, 2026, 8:51 p.m.
9.6
Critical
Description
Guardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approximately 6:00 PM Pacific, an attacker published a malicious version of `guardrails-ai` (0.10.1) to PyPI. Aany user who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026 may be affected. Security researchers identified the malicious package within approximately 2 hours of publication, and PyPI quarantined the repository. Based on our telemetry, Guardrails AI maintainers have observed no requests to Guardrails AI infrastructure originating from the malicious 0.10.1 version, and a review of system and access logs has produced no evidence of user data exfiltration through their systems. Users should upgrade to version 0.10.2 or downgrade to version 0.10.0, both of which are unaffected. Those who installed version 0.10.1 should rotate any credentials accessible from their machine (GitHub PATs, cloud provider keys, package registry tokens, API keys) and audit their GitHub account for unauthorized workflows or repositories.
Product(s) Impacted
| Vendor | Product | Versions |
|---|---|---|
| Guardrails-ai |
|
|
Weaknesses
Common security weaknesses mapped to this vulnerability.
CWE-506
Embedded Malicious Code
The product contains code that appears to be malicious in nature.
*CPE(s)
Affected systems and software identified for this CVE.
| Type | Vendor | Product | Version | Update | Edition | Language | Software Edition | Target Software | Target Hardware | Other Information |
|---|---|---|---|---|---|---|---|---|---|---|
| a | guardrails-ai | guardrails_ai | 0.10.1 | / | / | / | / | / | / | / |
| a | guardrails-ai | guardrails_ai | <0.10.1 | / | / | / | / | / | / | |
| a | guardrails-ai | guardrails_ai | 0.10.0 | / | / | / | / | / | / | / |
| a | guardrails-ai | guardrails_ai | 0.10.2 | / | / | / | / | / | / | / |
Tags
CVSS Score
CVSS Data - 3.1
- Attack Vector: NETWORK
- Attack Complexity: LOW
- Privileges Required: NONE
- Scope: CHANGED
- Confidentiality Impact: HIGH
- Integrity Impact: HIGH
- Availability Impact: HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Timeline
Published: June 5, 2026, 8:17 p.m.
Last Modified: June 5, 2026, 8:51 p.m.
Last Modified: June 5, 2026, 8:51 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.