{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-5366/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-20T16:43:37.345Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-5366","@id":"https://www.cve.org/CVERecord?id=CVE-2026-5366","description":"Prefect version 3.6.23 is vulnerable to remote code execution due to improper handling of user-controlled input in the `GitRepository` storage class. The `commit_sha` parameter, which is passed to git commands, lacks validation and does not include a `--` separator to distinguish user input from git flags. This allows attackers to inject arbitrary git flags, such as `--upload-pack`, enabling execution of external programs. Additionally, the `directories` parameter can be exploited to inject git "},"products":[{"@id":"cpe:2.3:a:prefecthq:prefecthq\\/prefect:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:prefecthq:prefecthq\\/prefect:*:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"No fixed version is published yet; monitor the upstream advisory.","timestamp":"2026-06-20T16:43:37.345Z"}]}