CVE Catalog

CVE-2026-31230

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.55%

42th percentile — higher than 42% of all known CVEs

Summary

In the Adversarial Robustness Toolbox (ART) up to version 1.20.1, a command-line argument injection vulnerability was found in the Kubeflow component (robustness_evaluation_fgsm_pytorch.py). The script uses the unsafe eval() function to parse string values from the --clip_values and --input_shape arguments, allowing an attacker to remotely execute arbitrary Python code.

Risk Assessment

An attacker can remotely take over the system running the ART evaluation, leading to full compromise of data confidentiality, integrity, and availability for the organization.

Recommendation

Immediately update the ART library to a version newer than 1.20.1; in the meantime, avoid passing untrusted data to the --clip_values and --input_shape arguments and replace eval() with a safer parser.

Original NVD description (English source)

The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component (robustness_evaluation_fgsm_pytorch.py). The script uses the unsafe eval() function to parse string values provided via the --clip_values and --input_shape command-line arguments. This allows an attacker to inject arbitrary Python code into these arguments, which will be executed when eval() is called. The vulnerability can be exploited remotely if an attacker can control these arguments (e.g., through pipeline configuration or automated scripts), leading to arbitrary code execution on the system running the ART evaluation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS