Cyber Resilience

CVE-2026-35533

HighPublic PoCLPE

Published: 07 April 2026

Published
07 April 2026
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 7.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS Score 0.0001 0.3th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-35533 is a high-severity Improper Access Control (CWE-284) vulnerability in Jdx Mise. Its CVSS base score is 7.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Command and Scripting Interpreter (T1059); ranked at the 0.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

Mise, a tool for managing development environments including Node.js, Python, CMake, and Terraform, contains a vulnerability designated CVE-2026-35533 in versions 2026.2.18 through 2026.4.5. The issue stems from mise loading trust-control settings from a local project .mise.toml file before executing the trust check. This design flaw enables a malicious .mise.toml file to bypass trust verification and masquerade as trusted.

An attacker capable of placing a malicious .mise.toml in a repository can exploit the vulnerability when a user clones or accesses the repository and runs mise in that project directory, requiring local access, user interaction, and high attack complexity as per the CVSS 3.1 score of 7.7 (AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H). Successful exploitation allows the attacker to invoke dangerous directives such as [env] _.source, templates, hooks, or tasks, potentially leading to high impacts on confidentiality, integrity, and availability with a changed scope.

The GitHub security advisory at https://github.com/jdx/mise/security/advisories/GHSA-436v-8fw5-4mj8 provides details on mitigation, including any available patches or workarounds for this CWE-284-related improper access control issue.

EU & UK References

Vulnerability details

mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can…

more

make that same file appear trusted and then reach dangerous directives such as [env] _.source, templates, hooks, or tasks.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1059 Command and Scripting Interpreter Execution
Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries.
T1195 Supply Chain Compromise Initial Access
Adversaries may manipulate products or product delivery mechanisms prior to receipt by a final consumer for the purpose of data or system compromise.
T1553 Subvert Trust Controls Defense Impairment
Adversaries may undermine security controls that will either warn users of untrusted activity or prevent execution of untrusted programs.
Why these techniques?

Vulnerability bypasses trust verification for .mise.toml allowing execution of arbitrary directives (hooks/tasks/source) via T1059; enables supply chain compromise by malicious repo configs (T1195); directly subverts trust controls (T1553).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-44007Shared CWE-284
CVE-2026-1707Shared CWE-284
CVE-2026-37709Shared CWE-284
CVE-2024-35177Shared CWE-284
CVE-2026-48898Shared CWE-284
CVE-2025-29315Shared CWE-284
CVE-2025-55261Shared CWE-284
CVE-2026-39339Shared CWE-284
CVE-2026-28855Shared CWE-284
CVE-2026-46839Shared CWE-284

Affected Assets

jdx
mise
2026.2.18 — 2026.4.5

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires identification, reporting, and correction of flaws like the pre-trust loading of .mise.toml in mise, preventing exploitation through patching to versions beyond 2026.4.5.

prevent

Mandates validation of information inputs such as .mise.toml trust-control settings before application, blocking malicious self-trust bypass.

prevent

Enforces secure configuration settings for mise to prioritize global trust checks over local .mise.toml loading, mitigating the vulnerability's impact.

References