CYBERHAWK / CVE / CVE-2026-39987

CVE-2026-39987

Marimo

ACTIVELY EXPLOITED (KEV) ai

The flaw

Pre-auth remote code execution allows unauthenticated shell access

What to do

Update immediately if running Marimo in production

▸ Scan my repo for CVE-2026-39987

References

NVD CISA KEV OSV GitHub Advisory MITRE News search

In the news

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of DisclosureThe Hacker News · 2026-04-10
CVE-2026-39987: Marimo RCE exploited in hours after disclosureSecurity Affairs · 2026-04-11
Critical Marimo Python Notebook RCE Vulnerability (CVE-2026-39987) Exploited Within 10 Hours of DisclosureRescana · 2026-04-01

First seen 2026-04-24 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits