CVE-2026-32640: SimpleEval: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox

March 13, 2026 (updated March 16, 2026)

If the objects passed in as names to SimpleEval have modules or other disallowed / dangerous objects available as attrs. Additionally, dangerous functions or modules could be accessed by passing them as callbacks to other safe functions to call.

Examples (found by @ByamB4):

Any module where non-underscore attribute chains reach os or sys:

os.path, pathlib, shutil, glob (direct .os / .sys attributes)
statistics (has .sys)
numpy (has .ctypeslib.os and .f2py.sys)
urllib.parse (has .warnings.sys)

References

github.com/advisories/GHSA-44vg-5wv2-h2hg
github.com/danthedeckie/simpleeval
github.com/danthedeckie/simpleeval/releases/tag/1.0.5
github.com/danthedeckie/simpleeval/security/advisories/GHSA-44vg-5wv2-h2hg
nvd.nist.gov/vuln/detail/CVE-2026-32640

Code Behaviors & Features

Detect and mitigate CVE-2026-32640 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →