Heymrun Heym
3 CVEs affecting Heymrun Heym. Latest disclosed: 2026-05-12. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-45227 | High | 8.8 | 2026-05-12 | Heym before 0.0.21 contains a sandbox escape vulnerability in the custom Python tool executor that allows authenticated workflow authors to bypass sandbox rest… |
CVE-2026-45225 | High | 7.6 | 2026-05-12 | Heym before 0.0.21 contains a path traversal vulnerability in the file upload endpoint that allows authenticated users to write attacker-controlled files to ar… |
CVE-2026-45226 | High | 7.1 | 2026-05-12 | Heym before 0.0.21 contains an authorization bypass vulnerability in workflow execution that allows authenticated users to execute arbitrary workflows by refer… |