CVE-2026-31220: n/a
PySyft (Syft Datasite/Server) versions 0.9.5 and earlier are vulnerable to remote code execution due to insufficient validation and sandboxing of user-submitted code. The system allows low-privileged users to submit Python functions (via @sy.syft_function()) for remote execution on the server. While a code approval mechanism exists, the submitted code undergoes no security checks for dangerous operations (e.g., file access, command execution). Once approved, the code is executed within the server process using exec() and eval() functions without proper isolation. A remote attacker can leverage this to execute arbitrary Python code on the server, leading to complete compromise of the server environment.
AI Analysis
Technical Summary
PySyft (Syft Datasite/Server) versions 0.9.5 and earlier allow remote code execution because user-submitted Python functions, submitted via @sy.syft_function(), are executed on the server after approval without adequate security checks or sandboxing. The execution uses Python's exec() and eval() functions within the server process, enabling attackers to run arbitrary code and fully compromise the server environment. There is no vendor advisory or patch information available at this time.
Potential Impact
An attacker with the ability to submit code and have it approved can execute arbitrary Python code on the server, leading to complete compromise of the server environment. This includes potential unauthorized access, data manipulation, or disruption of service. There are no known exploits in the wild currently.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict the ability to submit and approve user-defined functions to trusted personnel only and consider isolating the server environment to limit potential damage from exploitation.
CVE-2026-31220: n/a
Description
PySyft (Syft Datasite/Server) versions 0.9.5 and earlier are vulnerable to remote code execution due to insufficient validation and sandboxing of user-submitted code. The system allows low-privileged users to submit Python functions (via @sy.syft_function()) for remote execution on the server. While a code approval mechanism exists, the submitted code undergoes no security checks for dangerous operations (e.g., file access, command execution). Once approved, the code is executed within the server process using exec() and eval() functions without proper isolation. A remote attacker can leverage this to execute arbitrary Python code on the server, leading to complete compromise of the server environment.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
PySyft (Syft Datasite/Server) versions 0.9.5 and earlier allow remote code execution because user-submitted Python functions, submitted via @sy.syft_function(), are executed on the server after approval without adequate security checks or sandboxing. The execution uses Python's exec() and eval() functions within the server process, enabling attackers to run arbitrary code and fully compromise the server environment. There is no vendor advisory or patch information available at this time.
Potential Impact
An attacker with the ability to submit code and have it approved can execute arbitrary Python code on the server, leading to complete compromise of the server environment. This includes potential unauthorized access, data manipulation, or disruption of service. There are no known exploits in the wild currently.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict the ability to submit and approve user-defined functions to trusted personnel only and consider isolating the server environment to limit potential damage from exploitation.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-03-09T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a034c84cbff5d8610fe99e2
Added to database: 5/12/2026, 3:51:32 PM
Last enriched: 5/12/2026, 4:07:56 PM
Last updated: 5/13/2026, 4:51:18 AM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.