Expression Evaluation Vulnerability in Nuclei by Project Discovery
CVE-2026-41645

5.3MEDIUM

Key Information:

Vendor

Projectdiscovery
Status
Nuclei
Vendor
CVE Published:
8 May 2026

What is CVE-2026-41645?

A vulnerability exists in the Nuclei vulnerability scanner's expression evaluation engine, affecting versions 3.0.0 through 3.7.x. It allows an attacker to exploit multi-step templates, potentially injecting and executing unsafe DSL expressions from HTTP response data. If the -env-vars or -ev option is enabled, sensitive host environment variables could be exposed. This setting is off by default, meaning standard configurations remain secure. The issue has been resolved in version 3.8.0, making system updates essential for enhanced security.

Affected Version(s)

nuclei >= 3.0.0, < 3.8.0

References

https://github.com/projectdiscovery/nuclei/security/advis...
x_refsource_CONFIRM
https://github.com/projectdiscovery/nuclei/pull/7221
x_refsource_MISC
https://github.com/projectdiscovery/nuclei/pull/7321
x_refsource_MISC

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.