{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33664", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-23T15:23:42.220Z", "datePublished": "2026-03-26T21:13:12.467Z", "dateUpdated": "2026-03-27T13:55:17.704Z"}, "containers": {"cna": {"title": "Kestra Vulnerable to Stored Cross-Site Scripting via Flow YAML Fields", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp"}], "affected": [{"vendor": "kestra-io", "product": "kestra", "versions": [{"version": "<= 1.3.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-26T21:13:12.467Z"}, "descriptions": [{"lang": "en", "value": "Kestra is an open-source, event-driven orchestration platform Versions up to and including 1.3.3 render user-supplied flow YAML metadata fields \u2014 description, inputs[].displayName, inputs[].description \u2014 through the Markdown.vue component instantiated with html: true. The resulting HTML is injected into the DOM via Vue's v-html without any sanitization. This allows a flow author to embed arbitrary JavaScript that executes in the browser of any user who views or interacts with the flow. This is distinct from GHSA-r36c-83hm-pc8j / CVE-2026-29082, which covers only FilePreview.vue rendering .md files from execution outputs. The present finding affects different components, different data sources, and requires significantly less user interaction (zero-click for input.displayName). As of time of publication, it is unclear if a patch is available."}], "source": {"advisory": "GHSA-v2mc-8q95-g7hp", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T13:32:52.598480Z", "id": "CVE-2026-33664", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T13:55:17.704Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33664", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-23T15:23:42.220Z", "datePublished": "2026-03-26T21:13:12.467Z", "dateUpdated": "2026-03-27T13:55:17.704Z"}, "containers": {"cna": {"title": "Kestra Vulnerable to Stored Cross-Site Scripting via Flow YAML Fields", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp"}], "affected": [{"vendor": "kestra-io", "product": "kestra", "versions": [{"version": "<= 1.3.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-26T21:13:12.467Z"}, "descriptions": [{"lang": "en", "value": "Kestra is an open-source, event-driven orchestration platform Versions up to and including 1.3.3 render user-supplied flow YAML metadata fields \u2014 description, inputs[].displayName, inputs[].description \u2014 through the Markdown.vue component instantiated with html: true. The resulting HTML is injected into the DOM via Vue's v-html without any sanitization. This allows a flow author to embed arbitrary JavaScript that executes in the browser of any user who views or interacts with the flow. This is distinct from GHSA-r36c-83hm-pc8j / CVE-2026-29082, which covers only FilePreview.vue rendering .md files from execution outputs. The present finding affects different components, different data sources, and requires significantly less user interaction (zero-click for input.displayName). As of time of publication, it is unclear if a patch is available."}], "source": {"advisory": "GHSA-v2mc-8q95-g7hp", "discovery": "UNKNOWN"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33664", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-27T13:32:52.598480Z"}}}], "references": [{"url": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T13:32:44.415Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Kestra is an open-source, event-driven orchestration platform Versions up to and including 1.3.3 render user-supplied flow YAML metadata fields \u2014 description, inputs[].displayName, inputs[].description \u2014 through the Markdown.vue component instantiated with html: true. The resulting HTML is injected into the DOM via Vue's v-html without any sanitization. This allows a flow author to embed arbitrary JavaScript that executes in the browser of any user who views or interacts with the flow. This is distinct from GHSA-r36c-83hm-pc8j / CVE-2026-29082, which covers only FilePreview.vue rendering .md files from execution outputs. The present finding affects different components, different data sources, and requires significantly less user interaction (zero-click for input.displayName). As of time of publication, it is unclear if a patch is available."}], "id": "CVE-2026-33664", "lastModified": "2026-03-26T22:16:29.727", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 5.2, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-26T22:16:29.727", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/kestra-io/kestra/security/advisories/GHSA-v2mc-8q95-g7hp"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.3.3]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "kestra", "source": "cna", "vendor": "kestra-io"}, "product": "kestra", "vendor": "kestra-io"}], "analysis": {"en": {"generated_at": "2026-03-26T22:52:06.441469+00:00", "value": {"mitigation_remediation": ["Update Kestra to a release newer than 1.3.3 once it is published by the vendor.", "If no update is available, remove or sanitize any HTML content in the affected metadata fields of existing flows before they are displayed.", "Limit access to flow editing and viewing interfaces to trusted users only to reduce the number of potential victims.", "Configure the Markdown renderer to disable raw HTML for these fields or switch to a renderer that automatically strips scripts.", "Monitor application logs and user browser behavior for signs of injected script execution to detect exploitation early."], "summary": {"action": "Patch now", "impact": "stored cross\u2011site scripting (client\u2011side script execution)"}, "threat_synthesis": {"affected_systems": "This flaw affects the open\u2011source orchestration platform Kestra produced by kestra\u2011io. All releases up to and including 1.3.3 are vulnerable; newer versions are not confirmed to be fixed yet.", "description_and_impact": "User\u2011supplied Flow YAML metadata fields such as description, inputs[].displayName and inputs[].description are rendered through a Markdown component that accepts raw HTML. The resulting markup is then injected into the DOM with Vue's v\u2011html without sanitization, providing a stored XSS vector. An attacker can embed arbitrary JavaScript that runs in the browser of any user who opens the flow, enabling session hijacking, credential theft, phishing or other client\u2011side exploits.", "risk_and_exploitability": "With a CVSS score of 7.3 the vulnerability is considered high severity. No EPSS data is available and the issue is not listed in CISA's KEV catalog. The attack vector is essentially zero\u2011click for a malicious Flow definition: once a flow containing malicious markup is viewed, the script executes automatically in the victim\u2019s browser."}}}}, "created": "2026-03-27T08:31:47.483084+00:00", "updated": "2026-03-27T09:23:14.380819+00:00", "vendors": ["kestra-io", "kestra-io$PRODUCT$kestra"]}