CVE-2025-67511
- Source
- https://cve.org/CVERecord?id=CVE-2025-67511
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-67511.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-67511
- Aliases
- Published
- 2025-12-10T23:18:56.545Z
- Modified
- 2026-03-14T12:46:24.175568Z
- Severity
-
- 9.6 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- Cybersecurity AI (CAI) vulnerable to Command Injection in run_ssh_command_with_credentials Agent tool
- Details
-
Cybersecurity AI (CAI) is an open-source framework for building and deploying AI-powered offensive and defensive automation. Versions 0.5.9 and below are vulnerable to Command Injection through the runsshcommandwithcredentials() function, which is available to AI agents. Only password and command inputs are escaped in runsshcommandwithcredentials to prevent shell injection; while username, host and port values are injectable. This issue does not have a fix at the time of publication.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/67xxx/CVE-2025-67511.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-77" ] }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/67xxx/CVE-2025-67511.json
- https://github.com/aliasrobotics/cai/commit/09ccb6e0baccf56c40e6cb429c698750843a999c
- https://github.com/aliasrobotics/cai/security/advisories/GHSA-4c65-9gqf-4w8h
- https://nvd.nist.gov/vuln/detail/CVE-2025-67511
- https://www.hacktivesecurity.com/blog/2025/12/10/cve-2025-67511-tricking-a-security-ai-agent-into-pwning-itself