High severityNVD Advisory· Published Mar 24, 2026· Updated Mar 24, 2026
Intake has a Command Injection via shell() Expansion in Parameter Defaults
CVE-2026-33310
Description
Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell() syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell(), the command may be executed when the catalog source is accessed. This means that if a user loads a malicious catalog YAML, embedded commands could execute on the host system. Version 2.0.9 mitigates the issue by making getshell False by default everywhere.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
intakePyPI | <= 2.0.9 | — |
Affected products
3- ghsa-coords2 versions
<= 2.0.9+ 1 more
- (no CPE)range: <= 2.0.9
- (no CPE)range: < 2.0.9-1.1
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-37g4-qqqv-7m99ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-33310ghsaADVISORY
- github.com/intake/intake/commit/d0c0b6b57c1cb3f73880655ded4a9b0e18e1fd1bghsax_refsource_MISCWEB
- github.com/intake/intake/security/advisories/GHSA-37g4-qqqv-7m99ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.