🕳️ Vulnerabilities & CVEs

[Critical RCE] Marimo Flaw Exploited 10 Hours Post-Disclosure

Ten hours. That's all it took for attackers to weaponize a gaping hole in Marimo, the hot Python notebook tool with 20k GitHub stars. Sysdig caught them in the act, swiping secrets like it was nothing.

CVE Watch Apr 14, 2026 4 min read
Red alert graphic showing exploited Marimo WebSocket terminal with code leaking credentials

⚡ Key Takeaways

  • Hackers exploited Marimo RCE (CVE-2026-39987) in under 10 hours, stealing creds in <3 minutes. 𝕏
  • Affects exposed editable notebooks; 20k-star project popular with data scientists. 𝕏
  • Patch to 0.23.0 immediately or block /terminal/ws endpoint. 𝕏
  • Echoes 2019 Jupyter cryptojacking; expect exploit kits soon. 𝕏
Ibrahim Samil Ceyisakar
Written by

Ibrahim Samil Ceyisakar

Founder and Editor in Chief. Technology entrepreneur tracking AI, digital business, and global market trends.

#CVE-2026-39987 #marimo-rce #python-notebook #remote code execution #sysdig
More in Vulnerabilities & CVEs →

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Bleeping Computer

Related Stories

📬

Stay in the loop

The week's most important stories from CVE Watch, delivered once a week.

No spam. Unsubscribe any time.