CVE-2024-45858: 
Python vulnerability analysis and mitigation

An arbitrary code execution vulnerability (CVE-2024-45858) was discovered in the Guardrails AI framework, affecting versions 0.2.9 through 0.5.10. The vulnerability exists in the parse_token function of the guardrails/guardrails/validatorsattr.py file, where improper validation of XML files allows for arbitrary Python code execution when loading malicious RAIL files (HiddenLayer Advisory, NVD).

The vulnerability is classified as CWE-95 (Improper Neutralization of Directives in Dynamically Evaluated Code) and has received a CVSS v3.1 score of 7.8 (HIGH) with vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The issue stems from the parse_token method in the ValidatorsAttr class, where content from the validators attribute of the output tag is split along the ':' character. When arguments are wrapped in '{}', they are passed directly to an eval function without proper sanitization, enabling arbitrary code execution (HiddenLayer Advisory).

If exploited, this vulnerability allows attackers to execute arbitrary Python code on the victim's machine when a maliciously crafted XML file is loaded. The attack requires user interaction in the form of loading the malicious file, which could be distributed through forums or GitHub repositories (HiddenLayer Advisory).

The vulnerability has been patched in version 0.5.10, released on September 17, 2024. Users are strongly advised to upgrade to this version or later to mitigate the risk (HiddenLayer Advisory).

The vulnerability was responsibly disclosed to the vendor through multiple communication channels starting July 8, 2024. After initial communication challenges, the vendor acknowledged the issue and worked to deploy a fix. The coordinated disclosure process concluded with the public announcement on September 18, 2024 (HiddenLayer Advisory).