CVE-2026-34172 | Giskard-AI giskard-oss up to 0.3.3/1.0.2 Name Message ChatWorkflow.chat special elements used in a template engine

March 31, 2026 Yanac

A vulnerability categorized as critical has been discovered in Giskard-AI giskard-oss up to 0.3.3/1.0.2. This vulnerability affects the function ChatWorkflow.chat of the component Name Message Handler. The manipulation results in improper neutralization of special elements used in a template engine.

This vulnerability is known as CVE-2026-34172. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More