CVE-2026-39987: Marimo Remote Code Execution Vulnerability. Marimo contains
Marimo Remote Code Execution Vulnerability. Marimo contains an pre-authorization remote code execution vulnerability, allowing an unauthenticated attacked to shell access and execute arbitrary system commands.
- CISA KEV-listed (remediation due 2026-05-07)
- EPSS 80.7% (99.2% percentile)