PyPI: streamlit

CVE-2026-33682

Safety vulnerability ID: SFTY-20260325-49743

Safety legacy ID: pyup.io-90572

Affected versions of the Streamlit package are vulnerable to Server-Side Request Forgery (SSRF) due to improper validation of attacker-supplied filesystem paths on Windows hosts. In vulnerable code paths, including ComponentRequestHandler, Streamlit resolves user-controlled paths with os.path.realpath() or Path.resolve() before sufficient validation, allowing a malicious UNC path such as \\attacker-controlled-host\share to trigger an outbound SMB connection from the server.

PythonPyPINVDNVDGitHubGHSA
Created at: May 22, 2026Updated at: May 22, 2026

Overview

Unauthenticated SSRF Vulnerability in Streamlit on Windows (NTLM Credential Exposure)

Advisory

Affected versions of the Streamlit package are vulnerable to Server-Side Request Forgery (SSRF) due to improper validation of attacker-supplied filesystem paths on Windows hosts. In vulnerable code paths, including ComponentRequestHandler, Streamlit resolves user-controlled paths with os.path.realpath() or Path.resolve() before sufficient validation, allowing a malicious UNC path such as \\attacker-controlled-host\share to trigger an outbound SMB connection from the server.

Affected Package

Affecting streamlit package, versions
<1.54.0

Also affects

---

How to Fix

Upgrade
streamlit
to
1.54.0
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more