CVE-2026-46439
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.8 / 10
Vulnerability Description
compliance-trestle Vulnerable to Remote Code Execution via Recursive Server-Side Template Injection (SSTI)
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
pip
Product
compliance-trestle
External References
- https://github.com/oscal-compass/compliance-trestle/security/advisories/GHSA-gg2g-p7xc-qqmm
- https://github.com/oscal-compass/compliance-trestle/commit/247fcce289f60103f3d8e28d8ec51a6986b94fb6
- https://github.com/oscal-compass/compliance-trestle/commit/7d107b3ac53caca7bde97a6278b23cd739d94525
- https://github.com/advisories/GHSA-gg2g-p7xc-qqmm
Discussion (0)
Add Comment
No comments yet. Be the first!