CVE-2025-5120

Source
https://cve.org/CVERecord?id=CVE-2025-5120
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-5120.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-5120
Aliases
Published
2025-07-27T07:57:07.134Z
Modified
2026-07-15T01:49:02.889184729Z
Severity
  • 7.6 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L CVSS Calculator
Summary
Sandbox Escape Vulnerability in huggingface/smolagents
Details

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution (RCE). The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code execution despite employing static and dynamic checks. Attackers can exploit whitelisted modules and functions to execute arbitrary code, compromising the host system. This flaw undermines the core security boundary intended to isolate untrusted code, posing risks such as unauthorized code execution, data leakage, and potential integration-level compromise. The issue is resolved in version 1.17.0.

Database specific
{
    "cna_assigner": "@huntr_ai",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/5xxx/CVE-2025-5120.json",
    "cwe_ids": [
        "CWE-94"
    ]
}
References

Affected packages

Git / github.com/huggingface/smolagents

Affected ranges

Type
GIT
Repo
https://github.com/huggingface/smolagents
Events
Database specific
{
    "cpe": "cpe:2.3:a:huggingface:smolagents:1.14.0:*:*:*:*:*:*:*",
    "source": [
        "CPE_STRING",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "1.14.0"
        },
        {
            "last_affected": "1.14.0"
        }
    ]
}

Affected versions

1.*
1.14.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-5120.json"