Vulnerabilities ›

CVE-2026-5597

Medium

CWE-22 — Weakness Type

                    Published: Apr 5, 2026                      ·  Modified: Apr 8, 2026                      ·  Source: NVD                

CVSS v3

6.3

🔗 NVD Official

📄 Description (English)

A flaw has been found in griptape-ai griptape 0.19.4. This affects an unknown part of the file griptape\tools\computer\tool.py of the component ComputerTool. Executing a manipulation of the argument filename can lead to path traversal. It is possible to launch the attack remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

🤖 AI Executive Summary

CVE-2026-5597 is a path traversal vulnerability in griptape-ai version 0.19.4 affecting the ComputerTool component. An attacker can manipulate the filename argument to access unauthorized files on the system remotely. With no patch available and published exploit details, this poses a moderate risk to organizations using this AI framework for file operations.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 19, 2026 14:03

🇸🇦 Saudi Arabia Impact Assessment

Saudi organizations using griptape-ai for AI-powered automation, particularly in banking (SAMA-regulated fintech), government digital transformation initiatives (NCA oversight), and healthcare systems face risk of unauthorized file access. Financial institutions and government agencies processing sensitive data through AI tools are most vulnerable. Telecom and energy sectors using AI for operational automation could experience data exfiltration or system compromise.

🏢 Affected Saudi Sectors

Banking and Financial Services Government and Public Administration Healthcare Energy and Utilities Telecommunications Technology and Software Development

🎯 MITRE ATT&CK Techniques

T1083 - File and Directory Discovery T1005 - Data from Local System T1190 - Exploit Public-Facing Application T1057 - Process Discovery T1087 - Account Discovery

⚖️ Saudi Risk Score (AI)

6.8

/ 10.0

🔧 Remediation Steps (English)

Immediate Actions:

1. Identify all systems running griptape-ai 0.19.4 and document their usage

2. Restrict network access to ComputerTool endpoints using firewall rules

3. Implement input validation to reject path traversal patterns (../, ..\ sequences)

4. Monitor file access logs for suspicious filename arguments



Compensating Controls:

1. Run griptape services with minimal file system permissions (principle of least privilege)

2. Implement Web Application Firewall (WAF) rules to block path traversal attempts

3. Use chroot/containerization to limit file system scope

4. Enable detailed logging of all ComputerTool filename operations



Detection Rules:

1. Alert on filename arguments containing: ../, ..\ , %2e%2e, encoded traversal sequences

2. Monitor for file access outside intended directories

3. Track failed file access attempts with unusual paths



Upgrade Path:

1. Monitor griptape GitHub repository for security patches

2. Plan upgrade to patched version immediately upon release

3. Test in isolated environment before production deployment

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. تحديد جميع الأنظمة التي تعمل بـ griptape-ai 0.19.4 وتوثيق استخدامها

2. تقييد الوصول إلى نقاط نهاية ComputerTool باستخدام قواعد جدار الحماية

3. تنفيذ التحقق من صحة المدخلات لرفض أنماط اجتياز المسار (../ و..\ )

4. مراقبة سجلات الوصول إلى الملفات للكشف عن معاملات اسم الملف المريبة

الضوابط البديلة:

1. تشغيل خدمات griptape بأقل صلاحيات نظام الملفات (مبدأ الحد الأدنى من الامتيازات)

2. تنفيذ قواعد جدار تطبيقات الويب لحجب محاولات اجتياز المسار

3. استخدام chroot/containerization لتحديد نطاق نظام الملفات

4. تفعيل السجلات التفصيلية لجميع عمليات اسم ملف ComputerTool

قواعد الكشف:

1. التنبيه على معاملات اسم الملف التي تحتوي على: ../ و..\ و%2e%2e والتسلسلات المشفرة

2. مراقبة الوصول إلى الملفات خارج الدلائل المقصودة

3. تتبع محاولات الوصول الفاشلة بمسارات غير عادية

مسار الترقية:

1. مراقبة مستودع griptape GitHub للحصول على تصحيحات الأمان

2. التخطيط للترقية إلى الإصدار المصحح فوراً عند إصداره

3. الاختبار في بيئة معزولة قبل نشر الإنتاج

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.5.1.1 - Access Control Policies ECC 2024 A.8.2.1 - User Access Management ECC 2024 A.12.4.1 - Event Logging ECC 2024 A.12.6.1 - Management of Technical Vulnerabilities

🔵 SAMA CSF

SAMA CSF ID.AM-2 - Software Inventory SAMA CSF PR.AC-1 - Access Control SAMA CSF PR.PT-1 - Security Awareness and Training SAMA CSF DE.CM-1 - System Monitoring

🟡 ISO 27001:2022

ISO 27001:2022 A.5.15 - Access Control ISO 27001:2022 A.8.1 - User Endpoint Devices ISO 27001:2022 A.12.6.1 - Management of Technical Vulnerabilities ISO 27001:2022 A.12.4.1 - Event Logging

🟣 PCI DSS v4.0.1

PCI DSS 6.2 - Security Patches PCI DSS 10.2 - Logging and Monitoring PCI DSS 2.2.4 - Configuration Standards

🔗 References & Sources 4

🔗

https://github.com/Ka7arotto/cve/blob/main/griptape/SaveCodeTool/computeTool.md

cna@vuldb.com

🔗

https://vuldb.com/submit/784465

cna@vuldb.com

🔗

https://vuldb.com/vuln/355391

cna@vuldb.com

🔗

https://vuldb.com/vuln/355391/cti

cna@vuldb.com

📊 CVSS Score

6.3

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityL — Low / Local

📋 Quick Facts

Severity Medium

CVSS Score6.3

CWECWE-22

EPSS0.02%

Exploit No

Patch ✗ No

Published 2026-04-05

Source Feed nvd

🇸🇦 Saudi Risk Score

6.8

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-22

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-5597

💬 Comments

Introduce Yourself

Sign In Required