CVE-2026-35533 - Vulnerability Details

- mise has a local settings bypass config trust checks

Description

mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can make that same file appear trusted and then reach dangerous directives such as [env] _.source, templates, hooks, or tasks.

Published: 2026-04-07

Score: 7.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability allows an attacker who can place a malicious .mise.toml file in a repository to bypass trust checks that normally prohibit untrusted configuration. The file is read and loaded before the integrity verification steps, enabling execution of dangerous directives such as environment sources, templates, hooks, or tasks. As these directives can run arbitrary commands, an attacker can gain code execution within the local environment, potentially escalating privileges or compromising the host.

Affected Systems

The affected product is mise from the jdx organization. Versions from 2026.2.18 through 2026.4.5 are impacted; later releases such as 2026.4.6 and above are not known to be affected.

Risk and Exploitability

The CVSS score is 7.8, indicating a high severity. The EPSS score is 0.00014 (<1%), indicating a very low probability of exploitation at the time of analysis. The vulnerability is not listed in the CISA KEV catalog. The attack vector is inferred to be local – an attacker must have the ability to place a file in a project repository, but once there the path to execute commands is straightforward. The weakness is captured by CWE-284, improper privilege management. Consequently, the risk profile is high for environments that automatically trust local configuration files.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

jdx

mise

affected

Version	Status	Constraints
`>= 2026.2.18, <= 2026.4.5`	affected	—

Configuration 1 [-]

cpe:2.3:a:jdx:mise:*:*:*:*:*:rust:*:*

No data.

Vendor Product Confidence Versions

Jdx

Mise

100%

Version	Status	Scheme	Platform
`[2026.2.18,2026.4.5]`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update mise to version 2026.4.6 or later from the official project release channel.
Verify that configuration files are only sourced from trusted repositories or directories.
Configure or review the trust-control settings to enforce stricter validation before executing directives such as [env].source, templates, hooks, or tasks.
If an immediate update is not possible, restrict file write permissions on the .mise.toml location to prevent unauthorized creation.

Generated by OpenCVE AI on April 16, 2026 at 02:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-436v-8fw5-4mj8	Local settings bypass config trust checks

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00006.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/jdx/mise/security/advisories/GHSA-436v-8fw5-4mj8

History

Wed, 15 Apr 2026 20:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:a:jdx:mise::::::rust::*

Wed, 08 Apr 2026 19:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Jdx Jdx mise
Vendors & Products		Jdx Jdx mise

Wed, 08 Apr 2026 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 07 Apr 2026 21:15:00 +0000

Type	Values Removed	Values Added
Description		mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can make that same file appear trusted and then reach dangerous directives such as [env] _.source, templates, hooks, or tasks.
Title		mise has a local settings bypass config trust checks
Weaknesses		CWE-284
References		https://github.com/jdx/mise/security/advisories/GHSA-436v-8fw5-4mj8
Metrics		cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}`

Subscriptions

Jdx Mise

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-04-07T21:01:16.670Z

Updated: 2026-04-08T14:31:40.953Z

Reserved: 2026-04-03T02:15:39.281Z

Link: CVE-2026-35533

Vulnrichment

Updated: 2026-04-08T14:31:35.675Z

NVD

Status : Analyzed

Published: 2026-04-07T21:17:17.870

Modified: 2026-04-15T20:33:52.033

Link: CVE-2026-35533

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-16T02:45:06Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object