Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

dbt-labs — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting dbt-labs. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by dbt-labs:dbt-coredbt-common
CVE IDTitleCVSSSeverityPublished
CVE-2026-39382 dbt has a Command Injection in Reusable Workflow via Unsanitized comment-body Output — dbt-coreCWE-78 8.8AIHighAI2026-04-07
CVE-2026-29790 dbt-common: commonprefix() doesn't protect against path traversal — dbt-commonCWE-22 7.5 -2026-03-06
CVE-2024-40637 Implicit override for built-in materializations from installed packages in dbt-core — dbt-coreCWE-74 4.2 Medium2024-07-16
CVE-2024-36105 dbt allows Binding to an Unrestricted IP Address via socketsocket — dbt-coreCWE-1327 5.3 Medium2024-05-27

This page lists every published CVE security advisory associated with dbt-labs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.