A significant security vulnerability, dubbed Cellbreak and tracked as CVE-2026-24002, has been identified in Grist‑Core, the open-source, self-hosted relational spreadsheet-database. This critical flaw, with a CVSS score of 9.1, carries the potential for remote code execution, posing a serious risk to users running the affected versions.
Discovered by security researcher Vladimir Tokarev of Cyera Research Labs, the vulnerability allows a single crafted formula within a Grist spreadsheet to compromise the server. This escape from the intended sandbox environment enables the execution of arbitrary operating system commands or host-runtime JavaScript, effectively blurring the lines between formula logic and the host system’s execution capabilities.
Understanding the Grist-Core Vulnerability
The Cellbreak vulnerability is a specific instance of a Pyodide sandbox escape. Pyodide is a Python distribution designed to run Python code directly within a web browser using WebAssembly, creating an isolated environment for executing formulas. However, Grist’s implementation of this sandboxing mechanism relied on a blocklist approach, which, as demonstrated by this flaw, proved insufficient to prevent malicious actors from breaking out.
“The sandbox’s design allows traversal through Python’s class hierarchy and leaves ctypes available, which together open access to Emscripten runtime functions that should never be reachable from a formula cell,” Tokarev explained. This combination, he added, facilitates host command execution and JavaScript execution within the host runtime, potentially leading to sensitive data exposure and unauthorized access.
According to Grist’s project maintainers, when the GRIST_SANDBOX_FLAVOR is set to Pyodide, opening a deliberately crafted document could allow attackers to run arbitrary processes on the server hosting the Grist instance. This level of access could enable the exfiltration of database credentials, API keys, sensitive files, and create opportunities for lateral movement within a compromised network.
Mitigation and Grist’s Response
The Grist project maintainers have addressed the Cellbreak vulnerability by updating the software to version 1.7.9, released on January 9, 2026. This update modifies the default behavior for Pyodide formula execution, moving it under the Deno JavaScript runtime. This change is intended to provide a more robust sandboxing solution.
“A security review identified a vulnerability in the ‘pyodide’ sandboxing method that is available in Grist,” the project maintainers stated. Users can check their instance’s sandboxing status in the Admin Panel. If ‘gvisor’ is displayed, the instance is not affected. However, if ‘pyodide’ is shown, updating to version 1.7.9 or later is crucial.
The maintainers also noted that the risk could re-emerge if an operator explicitly sets the GRIST_PYODIDE_SKIP_DENO environment variable to “1.” This setting should be avoided in environments where untrusted or semi-trusted formulas are likely to be processed.
Temporary and Long-Term Solutions
For users unable to update immediately, a temporary mitigation is to set the GRIST_SANDBOX_FLAVOR environment variable to “gvisor.” This change instructs Grist to utilize the gvisor sandboxing technology, which is not affected by this particular flaw.
“This mirrors the systemic risk found in other automation platforms: a single execution surface with privileged access can collapse organizational trust boundaries when its sandbox fails,” Tokarev commented. He emphasized the need for capability-based and defense-in-depth sandboxing strategies, moving beyond fragile blocklist approaches to prevent data-plane breaches.
The Grist project’s next steps will involve continued monitoring for further vulnerabilities and further hardening of their security protocols. Users are strongly advised to implement the recommended updates or temporary mitigations promptly to safeguard their Grist instances against potential exploitation of the Cellbreak vulnerability.