MEDIUM 6.6

PYSEC-2025-102

Details

Local File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbitrary files by supplying path traversal sequences in the notebook_path field of ExternalNotebookData requests, bypassing the intended extension-based check.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / dagster-ge

Introduced in: 0

No fixed version published yet for dagster-ge (pip). Pin to a known-safe version or switch to an alternative.

References

https://github.com/dagster-io/dagster/pull/30002 [REPORT]
https://github.com/dagster-io/dagster [PACKAGE]
https://www.gecko.security/blog/cve-2025-51481 [EVIDENCE]