{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-35197", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-04-01T18:48:58.937Z", "datePublished": "2026-04-06T19:39:23.095Z", "dateUpdated": "2026-04-06T19:39:23.095Z"}, "containers": {"cna": {"title": "Code injection in dye template expressions", "problemTypes": [{"descriptions": [{"cweId": "CWE-94", "lang": "en", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/mattieb/dye/security/advisories/GHSA-3v4r-5vfh-3wjr", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/mattieb/dye/security/advisories/GHSA-3v4r-5vfh-3wjr"}, {"name": "https://mattiebee.io/dye-template-advisory", "tags": ["x_refsource_MISC"], "url": "https://mattiebee.io/dye-template-advisory"}], "affected": [{"vendor": "mattieb", "product": "dye", "versions": [{"version": "< 1.1.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-06T19:39:23.095Z"}, "descriptions": [{"lang": "en", "value": "dye is a portable and respectful color library for shell scripts. Prior to 1.1.1, certain dye template expressions would result in execution of arbitrary code. This issue was discovered and fixed by dye's author, and is not known to be exploited. This vulnerability is fixed in 1.1.1."}], "source": {"advisory": "GHSA-3v4r-5vfh-3wjr", "discovery": "UNKNOWN"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "dye is a portable and respectful color library for shell scripts. Prior to 1.1.1, certain dye template expressions would result in execution of arbitrary code. This issue was discovered and fixed by dye's author, and is not known to be exploited. This vulnerability is fixed in 1.1.1."}], "id": "CVE-2026-35197", "lastModified": "2026-04-06T20:16:27.380", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.2, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-04-06T20:16:27.380", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/mattieb/dye/security/advisories/GHSA-3v4r-5vfh-3wjr"}, {"source": "security-advisories@github.com", "url": "https://mattiebee.io/dye-template-advisory"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.1.1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "dye", "source": "cna", "vendor": "mattieb"}, "product": "dye", "vendor": "mattieb"}], "analysis": {"en": {"generated_at": "2026-04-07T02:28:26.700286+00:00", "value": {"mitigation_remediation": ["Upgrade dye to version\u202f1.1.1 or later.", "Ensure scripts only process dye expressions from trusted sources.", "Verify any deployments that include dye expressions are from verified, legitimate origins."], "summary": {"action": "Immediate Patch", "impact": "Arbitrary code execution via template injection"}, "threat_synthesis": {"affected_systems": "The dye color library produced by mattieb is affected. Any instance installed with a version earlier than 1.1.1 may be vulnerable if a dye expression is evaluated in a shell script.", "description_and_impact": "This vulnerability arises from an injection flaw within dye template expressions, allowing an attacker to execute arbitrary shell commands when a vulnerable expression is evaluated. The weakness aligns with CWE\u201194, enabling unauthorized code execution that can compromise confidentiality, integrity, and availability of the host environment. The reported CVSS score of 6.6 indicates moderate severity.", "risk_and_exploitability": "The assigned severity (CVSS 6.6) reflects a moderate risk; EPSS information is unavailable, and the vulnerability is not listed in the KEV catalog. The likely attack vector is local or through scripts that process untrusted dye expressions. While there is no evidence of active exploitation, environments that execute user\u2011supplied or compromised scripts could be impacted if an attacker can influence the content of a dye expression."}}}}, "created": "2026-04-07T06:54:22.873970+00:00", "updated": "2026-04-07T09:37:24.680660+00:00", "vendors": ["mattieb", "mattieb$PRODUCT$dye"]}