CVE-2026-33646 CRITICAL

CVE-2026-33646: mise: Arbitrary Code Execution via Tera Templates in .tool-versions Files (Trust Bypass)

Vendor Jdx
Product mise
Weakness CWE-94 · Code injection
Published June 26, 2026
Last update June 29, 2026

CVSS base score

9.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.3.10, mise processes .tool-versions files through the Tera template engine during parsing, with the exec() function registered, enabling arbitrary command execution. Unlike .mise.toml files, .tool-versions files are not subject to trust verification in non-paranoid mode. This means an attacker can place a malicious .tool-versions file in a git repository, and when a victim with mise activated cds into the directory, arbitrary commands execute without any trust prompt. This vulnerability is fixed in 2026.3.10.

Key dates

02Disclosure timeline

June 26, 2026 CVE published
June 29, 2026 Record updated