Vulnerability in Open-metadata Openmetadata

CVE-2026-22244

OpenMetadata is a unified metadata platform. Versions prior to 1.11.4 are vulnerable to remote code execution via Server-Side Template Injection (SSTI) in FreeMarker email templates. An attacker must have administrative privileges to explo…

EPSS: 0.006 (70.5th percentile) — read the EPSS interpretation.