Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
Github GHSA |
GHSA-w2pm-x38x-jp44 | Dockerfile command injection via envs[*].name in bentofile.yaml (sibling fix-bypass of CVE-2026-33744 and CVE-2026-35043) |
Tue, 02 Jun 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:bentoml:bentoml:*:*:*:*:*:*:*:* |
Thu, 28 May 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 28 May 2026 03:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Bentoml
Bentoml bentoml |
|
| Vendors & Products |
Bentoml
Bentoml bentoml |
Wed, 27 May 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs[*].name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentoml containerize on the imported bento, those RUN directives execute on the host during docker build. This vulnerability is fixed in 1.4.39. | |
| Title | BentoML: Dockerfile command injection via envs[*].name in bentofile.yaml | |
| Weaknesses | CWE-78 CWE-94 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: GitHub_M
Published:
Updated: 2026-05-28T15:09:40.051Z
Reserved: 2026-05-05T19:52:59.148Z
Link: CVE-2026-44346
Updated: 2026-05-28T15:09:31.727Z
Status : Analyzed
Published: 2026-05-27T18:16:23.333
Modified: 2026-06-17T10:50:32.237
Link: CVE-2026-44346
No data.
OpenCVE Enrichment
Updated: 2026-05-28T03:15:05Z
Github GHSA