CVE-2026-35533
Published: 07 April 2026
Summary
CVE-2026-35533 is a high-severity Improper Access Control (CWE-284) vulnerability in Jdx Mise. Its CVSS base score is 7.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Command and Scripting Interpreter (T1059); ranked at the 0.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
Mise, a tool for managing development environments including Node.js, Python, CMake, and Terraform, contains a vulnerability designated CVE-2026-35533 in versions 2026.2.18 through 2026.4.5. The issue stems from mise loading trust-control settings from a local project .mise.toml file before executing the trust check. This design flaw enables a malicious .mise.toml file to bypass trust verification and masquerade as trusted.
An attacker capable of placing a malicious .mise.toml in a repository can exploit the vulnerability when a user clones or accesses the repository and runs mise in that project directory, requiring local access, user interaction, and high attack complexity as per the CVSS 3.1 score of 7.7 (AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H). Successful exploitation allows the attacker to invoke dangerous directives such as [env] _.source, templates, hooks, or tasks, potentially leading to high impacts on confidentiality, integrity, and availability with a changed scope.
The GitHub security advisory at https://github.com/jdx/mise/security/advisories/GHSA-436v-8fw5-4mj8 provides details on mitigation, including any available patches or workarounds for this CWE-284-related improper access control issue.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-19952
Vulnerability details
mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can…
more
make that same file appear trusted and then reach dangerous directives such as [env] _.source, templates, hooks, or tasks.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerability bypasses trust verification for .mise.toml allowing execution of arbitrary directives (hooks/tasks/source) via T1059; enables supply chain compromise by malicious repo configs (T1195); directly subverts trust controls (T1553).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires identification, reporting, and correction of flaws like the pre-trust loading of .mise.toml in mise, preventing exploitation through patching to versions beyond 2026.4.5.
Mandates validation of information inputs such as .mise.toml trust-control settings before application, blocking malicious self-trust bypass.
Enforces secure configuration settings for mise to prioritize global trust checks over local .mise.toml loading, mitigating the vulnerability's impact.