Vulnerability Description
Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger catastrophic backtracking, causing the process to hang indefinitely. Exploitation requires write access to a check definition and subsequent execution of the test suite. This issue has been fixed in giskard-checks version 1.0.2b1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Giskard | Giskard | < 1.0.2 |
Related Weaknesses (CWE)
References
- https://github.com/Giskard-AI/giskard-oss/releases/tag/giskard-checks%2Fv1.0.2b1Release Notes
- https://github.com/Giskard-AI/giskard-oss/security/advisories/GHSA-rq2q-4r55-987Vendor Advisory
FAQ
What is CVE-2026-40319?
CVE-2026-40319 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() with...
How severe is CVE-2026-40319?
CVE-2026-40319 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-40319?
Check the references section above for vendor advisories and patch information. Affected products include: Giskard Giskard.