Remote Code Execution Risk in guardrails-detectors from Red Hat
CVE-2026-15143
9.3CRITICAL
What is CVE-2026-15143?
A security flaw exists in the file_type content detector of the guardrails-detectors product. This vulnerability enables a remote attacker to provide an arbitrary XML Schema Definition (XSD) string, which is processed improperly, allowing the possibility for server-side requests to arbitrary URLs and local file reads. This could lead to the exposure of sensitive data, including cloud provider credentials and access to internal network services.