PatchSiren cyber security CVE debrief
CVE-2026-45758 guardrails-ai CVE debrief
CVE-2026-45758 is a critical vulnerability in Guardrails AI, a Python framework for building AI applications. On May 11, 2026, at approximately 6:00 PM Pacific, an attacker published a malicious version of `guardrails-ai` (0.10.1) to PyPI. Any user who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026, may be affected. Security researchers identified the malicious package within approximately 2 hours of publication, and PyPI quarantined the repository. Based on telemetry, Guardrails AI maintainers observed no requests to Guardrails AI infrastructure originating from the malicious 0.10.1 version, and a review of system and access logs produced no evidence of user data exfiltration through their systems. Users should upgrade to version 0.10.2 or downgrade to version 0.10.0, both of which are unaffected. Those who installed version 0.10.1 should rotate any credentials accessible from their machine (GitHub PATs, cloud provider keys, package registry tokens, API keys) and audit their GitHub account for unauthorized workflows or repositories.
- Vendor
- guardrails-ai
- Product
- guardrails
- CVSS
- CRITICAL 9.6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-08
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-08
Who should care
Users who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026, should be aware of this vulnerability and take necessary actions to secure their systems.
Technical summary
A malicious version of `guardrails-ai` (0.10.1) was published to PyPI on May 11, 2026. The package was identified as malicious within 2 hours, and PyPI quarantined the repository. The vulnerability has a CVSS score of 9.6 and is classified as CRITICAL.
Defensive priority
high
Recommended defensive actions
- Upgrade to version 0.10.2 or downgrade to version 0.10.0
- Rotate any credentials accessible from the machine (GitHub PATs, cloud provider keys, package registry tokens, API keys)
- Audit GitHub account for unauthorized workflows or repositories
Evidence notes
The CVE-2026-45758 vulnerability was published on June 5, 2026, and modified on June 8, 2026. The vulnerability affects Guardrails AI version 0.10.1.
Official resources
-
CVE-2026-45758 CVE record
CVE.org
-
CVE-2026-45758 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
-
Source reference
[email protected] - Issue Tracking
-
Mitigation or vendor reference
[email protected] - Mitigation, Vendor Advisory
CVE-2026-45758 was published on 2026-06-05T20:17:32.357Z and modified on 2026-06-08T15:22:49.137Z.