CVE-2026-33286— Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship Names
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-33286
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship Names
Source: NVD (National Vulnerability Database)
Vulnerability Description
Graphiti is a framework that sits on top of models and exposes them via a JSON:API-compliant interface. Versions prior to 1.10.2 have an arbitrary method execution vulnerability that affects Graphiti's JSONAPI write functionality. An attacker can craft a malicious JSONAPI payload with arbitrary relationship names to invoke any public method on the underlying model instance, class or its associations. Any application exposing Graphiti write endpoints (create/update/delete) to untrusted users is affected. The `Graphiti::Util::ValidationResponse#all_valid?` method recursively calls `model.send(name)` using relationship names taken directly from user-supplied JSONAPI payloads, without validating them against the resource's configured sideloads. This allows an attacker to potentially run any public method on a given model instance, on the instance class or associated instances or classes, including destructive operations. This is patched in Graphiti v1.10.2. Users should upgrade as soon as possible. Some workarounds are available. Ensure Graphiti write endpoints (create/update) are not accessible to untrusted users and/or apply strong authentication and authorization checks before any write operation is processed, for example use Rails strong parameters to ensure only valid parameters are processed.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
动态管理代码资源的控制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Graphiti 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Graphiti是Zep开源的一个为AI代理构建时序上下文图的框架。 Graphiti 1.10.2之前版本存在安全漏洞,该漏洞源于JSONAPI写入功能未验证用户提供的关系名称,可能导致任意方法执行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| graphiti-api | graphiti | < 1.10.2 | - |
II. Public POCs for CVE-2026-33286
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-33286
请登录查看更多情报信息。
- Release v1.10.2 · graphiti-api/graphiti · GitHubx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2026-33286
IV. Related Vulnerabilities
Same weakness: CWE-913
- CVE-2026-34156
NocoBase Affected by Sandbox Escape to RCE via console._stdo - CVE-2025-69219
Apache Airflow Providers Http: Unsafe Pickle Deserialization - CVE-2026-25049
n8n Has an Expression Escape Vulnerability Leading to RCE - CVE-2026-1770
Improper Control of Dynamically-Managed Code Resources in Cr - CVE-2025-68613
n8n Vulnerable to Remote Code Execution via Expression Injec
V. Comments for CVE-2026-33286
No comments yet