Description
Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local files through the operating system default file handler. A malicious Markdown document or project can contain a local-file link that appears as normal rendered content. If a user opens the Markdown in Warp and clicks the link, affected builds may route the resolved local file to a platform file opener instead of limiting the action to safe viewer/editor targets. This vulnerability is fixed in 0.2026.05.06.15.42.stable_01.
Published: 2026-06-24
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Warp is an agentic development environment that, in versions 0.2023.10.24.08.03.stable_00 through 0.2026.05.06.15.42.stable_01, may open executable local files through the operating system default file handler when a user clicks a local‑file link in a rendered Markdown document; this flaw allows an attacker to run arbitrary code on the host machine by embedding a malicious local‑file reference in a Markdown file.

Affected Systems

The affected product is Warp developed by warpdotdev; versions from 0.2023.10.24.08.03.stable_00 up to and including 0.2026.05.06.15.42.stable_01 are vulnerable.

Risk and Exploitability

The CVSS score of 8.8 indicates high severity. No EPSS data is available and the vulnerability is not listed in KEV, so no widespread exploitation is reported. The likely attack vector is local: an attacker delivers a crafted Markdown file to a targeted user; upon opening and clicking the link, the system handler executes the referenced file. The flaw is a CWE‑20 input validation error that lets the application forward a user‑supplied path to the OS.

Generated by OpenCVE AI on June 24, 2026 at 19:48 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Warp to version 0.2026.05.06.15.42.stable_01 or later to apply the fix for local‑file link handling.
  • If the upgraded version provides configurable settings, disable or restrict the use of the system default file opener for Markdown links so that only safe viewer or editor targets are allowed.
  • Until a patch or configuration change is applied, avoid opening untrusted Markdown documents that contain local‑file links or remove such links before viewing.

Generated by OpenCVE AI on June 24, 2026 at 19:48 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Warpdotdev
Warpdotdev warp
Vendors & Products Warpdotdev
Warpdotdev warp

Wed, 24 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 24 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
Description Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local files through the operating system default file handler. A malicious Markdown document or project can contain a local-file link that appears as normal rendered content. If a user opens the Markdown in Warp and clicks the link, affected builds may route the resolved local file to a platform file opener instead of limiting the action to safe viewer/editor targets. This vulnerability is fixed in 0.2026.05.06.15.42.stable_01.
Title Warp Markdown notebook links may open executable local files
Weaknesses CWE-20
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-24T17:57:45.317Z

Reserved: 2026-05-22T18:47:27.754Z

Link: CVE-2026-48704

cve-icon Vulnrichment

Updated: 2026-06-24T17:57:41.207Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T09:40:30Z

Weaknesses
  • CWE-20

    Improper Input Validation