Medium severity6.6NVD Advisory· Published Apr 6, 2026· Updated Apr 16, 2026
CVE-2026-35197
CVE-2026-35197
Description
dye is a portable and respectful color library for shell scripts. Prior to 1.1.1, certain dye template expressions would result in execution of arbitrary code. This issue was discovered and fixed by dye's author, and is not known to be exploited. This vulnerability is fixed in 1.1.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- mattiebee.io/dye-template-advisorynvdExploitVendor Advisory
- github.com/mattieb/dye/security/advisories/GHSA-3v4r-5vfh-3wjrnvdVendor Advisory
News mentions
0No linked articles in our index yet.